YoVDO

Cluster Grey Zone - Risks in Managed Cluster Middleware

Offered By: CNCF [Cloud Native Computing Foundation] via YouTube

Tags

Kubernetes Security Courses Network Security Courses Cloud Security Courses Vulnerability Assessment Courses Threat Modeling Courses Privilege Escalation Courses Container Security Courses

Course Description

Overview

Save Big on Coursera Plus. 7,000+ courses at $160 off. Limited Time Only!
Explore the security risks associated with Managed Cluster Middleware (MCM) in cloud-managed Kubernetes services in this 30-minute conference talk by Shay Berkovich and Barak Sharoni from Wiz. Delve into the less-documented components automatically deployed by Cloud Service Providers (CSPs) on worker nodes, and understand their potential impact on cluster security. Learn about the additional threat surface introduced by MCM, including high privileges, network exposure, and vulnerabilities. Discover why MCM can be an attractive target for attackers and why it's often overlooked by scanners and configuration tools. Gain insights on how to adjust your Kubernetes threat model based on this research, building upon previous findings on cloud grey zones.

Syllabus

Cluster Grey Zone: Risks in Managed Cluster Middleware - Shay Berkovich & Barak Sharoni, Wiz


Taught by

CNCF [Cloud Native Computing Foundation]

Related Courses

Maintaining Deployment Security in Microsoft Azure
Pluralsight Microsoft Azure Security Engineer: Configure Advanced Security for Compute
Pluralsight Microsoft Azure Security Technologies (AZ-500) Cert Prep: 2 Implement Platform Protection
LinkedIn Learning Securing Containers and Kubernetes Ecosystem
LinkedIn Learning Performing DevSecOps Automated Security Testing
Pluralsight