Cloud Native - Examining Pod Security Admission

Explore the intricacies of Pod Security Admission in this 55-minute CNCF conference talk. Delve into the Baseline Profile, examine the Admission Configuration File, and weigh the pros and cons of various security approaches. Learn about audit logs, caverno comparison, and privileged namespaces. Discover practical use cases and gain insights on enforcing baseline security with caverno. Conclude with key takeaways and a Q&A session to deepen your understanding of Kubernetes pod security.

Intro
Overview
Pod Security Admission
Baseline Profile
Admission Configuration File
Pros
Cons
No enforcement
Audit logs
caverno comparison
caverno cons
use cases
caverno
privileged
Privileged namespaces
Enforce baseline with caverno
Closing points
Questions