This talk will be held in English. / Dieser Vortrag wird auf Englisch gehalten.
In this presentation, we will explore an innovative approach to securing Kubernetes clusters using behavior analysis during continuous integration testing and generating native policies based on behavior.
By leveraging continuous behavioural analysis, we can replace tedious manual policy definitions which take long to define and can break easily. We will also discuss the importance of native policies, which allow us to enforce security policies directly within Kubernetes without relying on third-party tools.We will cover hands-on practices for implementing this approach, including how to integrate behavioral analysis into CI testing and how to use native policies to enforce security policies.
By the end of this presentation, attendees will have a deeper understanding of how to leverage innovative approaches to security in Kubernetes clusters, and how to use behavioral analysis and native policies to protect their environments against the latest threats.
- Kubernetes basics (core concepts, kubectl)
- Kubernetes security (admission controller, network policies, seccomp/security profiles)
- Continuous Integration (CI)
- Understand the limitations of traditional Kubernetes policy definitions.
- Explain the concept of behavioral analysis for Kubernetes security.
- Recognize the value of using native Kubernetes policies.
- Outline steps to integrate behavioral analysis into CI/CD.
- Apply native policies for enforcing security based on observed behavior.
