Kubernetes-native Security with Starboard

Explore Kubernetes-native security with Starboard in this 23-minute conference talk from KubeCon + CloudNativeCon Europe 2021. Dive into the open-source project that integrates security information from various tools into Kubernetes Custom Resource Definitions (CRDs). Learn about the motivations behind Starboard, design challenges, and how to manage security reports through familiar Kubernetes interfaces. Discover how to generate actionable security information, extend Starboard to integrate your preferred security tools, and understand the project's design decisions. Gain insights into role-based access control, viewing security hierarchies, and adding new security tools to the Starboard ecosystem. This advanced-level presentation includes code demonstrations and assumes basic familiarity with security tools like vulnerability scanning, YAML checks, and CIS benchmarks.

Introduction
Motivation behind Starboard
Demonstration of Starboard
Demo
Design Decisions
Rolebased Access Control
Viewing the Hierarchy
Adding Security Tools
Wrapup