From the course: DevOps Foundations: Going Cloud Native
Unlock the full course today
Join today to access over 22,600 courses taught by industry experts or purchase this course individually.
Adding a security mindset - Kubernetes Tutorial
From the course: DevOps Foundations: Going Cloud Native
Adding a security mindset
- [Instructor] Security is an essential topic in technology, and even more critical when it comes to the Cloud Native landscape. The fact that you can use Kubernetes to host your entire infrastructure, gives attackers a much larger landscape to attack infrastructure and applications. There are few sub-folder-areas for this, and I'll cover the basics here and add a bunch of resources you'll want to refer to in the course handout. I touched on Attack Surface and this can be broken down into three major pieces. The host machines that have Kubernetes running on them, the containers that have you code, and finally the Kubernetes cluster itself. Let's take a look at the host first. These are the machines that you're running Kubernetes on. There's a lot of prior information available to secure hosts. Things like SELinux, or AppArmor for example. Your goal should always be to minimize privileges for the applications running on host. From a container point of view, there are a few recipes to…
Practice while you learn with exercise files
Download the files the instructor uses to teach the course. Follow along and learn by watching, listening and practicing.