Improving Containers Isolation in Kubernetes

Explore the Kubernetes Security Profiles Operator project in this 42-minute conference talk by Cosmin Cojocar from Adobe. Learn how to enhance container security in Kubernetes using SELinux, seccomp, and AppArmor profiles. Discover the importance of tailored security profiles for workloads requiring increased isolation, particularly in multi-tenant clusters. Gain insights into the project's introduction, practical examples, and its utilization of eBPF for simplified custom profile creation. Conclude with valuable lessons from Adobe's experience in implementing the Security Profiles Operator for container isolation.

Improving Containers Isolation in Kubernetes - Cosmin Cojocar, Adobe