Introduction to Kubernetes Security - Marc Boorshtein

Marc Boorshtein

Learn the fundamentals of Kubernetes security from experienced expert Marc Boorshtein, covering topics such as automating security, identity management, secure communications, secret storage, and more.

Key takeaways
  • Automate security
  • Use OpenID Connect for identity management
  • Use impersonating proxies to secure communications
  • Store secrets securely, not in Git
  • Use VPNs for multi-tenancy
  • Use network policies for isolation
  • Use RBAC for role-based access control
  • Keep secrets short-lived and revolvable
  • Use JWTs for authentication
  • Use service accounts for automation
  • Integrate with identity management systems
  • Use role bindings for security
  • Use OpenShift for security
  • Use Argo for automation
  • Use Cilium for network policy management