Securing 900 Kubernetes Clusters - Journey to ValidatingAdmissionPolicies
Offered By: CNCF [Cloud Native Computing Foundation] via YouTube
Course Description
Overview
Explore Mercedes-Benz Tech Innovation's journey in securing over 900 Kubernetes clusters without Pod Security Policies (PSP) in this 38-minute conference talk. Discover why Pod Security Standards (PSS) were not suitable for their large-scale Kubernetes fleet and learn about their implementation of Pod Security using popular tools like Kyverno and OPA. Gain insights into the challenges faced, lessons learned, and advantages of adopting ValidatingAdmissionPolicies (VAPs) as a native solution. Examine practical examples demonstrating Mercedes-Benz's approach to ensuring a secure runtime for all applications across their extensive managed Kubernetes environment of 6,500+ machines.
Syllabus
Securing 900 Kubernetes Clusters Without PSP - Mercedes-Benz' Journey to ValidatingAdmissionPolicies
Taught by
CNCF [Cloud Native Computing Foundation]
Related Courses
A Container Platform for the Banking Industry - Why, What & HowDevoxx via YouTube Policy Compliance with Sigstore - From Signing Software to Validating the Whole Software Supply Chain
Linux Foundation via YouTube The Difference Between Screwing Around (DevOps) and Science (GitOps) - Writing It Down
CNCF [Cloud Native Computing Foundation] via YouTube Calling OPA from eBPF Through WASM in the Kernel - Exploring Unconventional Technology Integration
CNCF [Cloud Native Computing Foundation] via YouTube Access Policies for Hybrid Cloud Environments
CNCF [Cloud Native Computing Foundation] via YouTube