Want to run your Kubernetes workloads safely and securely? This practical book provides a threat-based guide to Kubernetes security. Each chapter examines a particular component’s architecture and potential default settings and then reviews existing high-profile attacks and historical Common Vulnerabilities and Exposures (CVEs). Authors Andrew Martin and Michael Hausenblas share best-practice configuration to help you harden clusters from possible angles of attack. This book begins with a vanilla Kubernetes installation with built-in defaults. You’ll examine an abstract threat model of a distributed system running arbitrary workloads, and then progress to a detailed assessment of each component of a secure Kubernetes system. * Understand where your Kubernetes system is vulnerable with threat modelling techniques * Focus on pods, from configurations to attacks and defenses * Secure your cluster and workload traffic * Define and enforce policy with RBAC, OPA, and Kyverno * Dive deep into sandboxing and isolation techniques * Learn how to detect and mitigate supply chain attacks * Explore filesystems, volumes, and sensitive information at rest * Discover what can go wrong when running multitenant workloads in a cluster * Learn what you can do if someone breaks in despite you having controls in place
| Book Author | Andrew Martin & Michael Hausenblas |
|---|---|
| Format | eBook |
| ISBN | 9781492081739 |
| Language | English |
| Pages | 293 |
| Publication Date | 2021-05-15 |
| Publisher | O'Reilly Media |
Only logged in customers who have purchased this product may leave a review.
Related products
-
Automate the Boring Stuff With Python
Original price was: $20.63.$15.47Current price is: $15.47. Add to cart -
The 22 Immutable Laws of Branding
Original price was: $16.54.$12.41Current price is: $12.41. Add to cart
Reviews
There are no reviews yet.