Securing Kubernetes

Dive into a comprehensive exploration of Kubernetes security in this conference talk from BSidesSF 2017. Begin with an overview of essential Kubernetes concepts and components, laying the foundation for understanding the platform's architecture. Progress through an in-depth examination of authentication and authorization mechanisms within Kubernetes, gaining insights into how these crucial security aspects are implemented. Conclude by discovering how Hashicorp Vault's PKI backend can be leveraged to enhance Kubernetes security, including issuing certificates for transport security and authentication, as well as facilitating authorization through the embedding of group membership information in client certificates.

BSidesSF 2017 - Securing Kubernetes (Jesse Endahl)