https://microsegment.io/tags/kubernetes/ Recent content in Kubernetes on microsegment.io Hugo en-us Tue, 14 Apr 2020 00:00:00 +0000 https://microsegment.io/2020/04/14/thoughts-on-the-attack-matrix-for-kubernetes/ Tue, 14 Apr 2020 00:00:00 +0000 https://microsegment.io/2020/04/14/thoughts-on-the-attack-matrix-for-kubernetes/ <h1 id="introduction">Introduction</h1> <p>In a recent blog post Yossi Weizman talks about the <a href="https://www.microsoft.com/security/blog/2020/04/02/attack-matrix-kubernetes/">Attack matrix for Kubernetes</a> and i had a couple of thoughts about it. As Yossi rightly says, Kubernetes is becoming a vital part in the compute stack of many companies. What i hear in my network and during sessions with IT security teams is that they face new challenges with Kubernetes-based orchestration platforms. The container platforms are also perceived like a black box for traditional networking and IT security folks, so it makes sense to understand the security risks that are inherent to those platforms first.</p> https://microsegment.io/2019/08/06/attacking-kubernetes/ Tue, 06 Aug 2019 00:00:00 +0000 https://microsegment.io/2019/08/06/attacking-kubernetes/ <p>The current <a href="https://kubernetespodcast.com/episode/065-attacking-and-defending-kubernetes/">Kubernetes Podcast</a> gives a great view into how to attack kubernetes clusters. I have been talking about this all the time when i see OpenShift or kubernetes clusters that are trying to protect the container infrastructure with tools made for protecting pods, but hardly protect the container orchestration platform itself.</p> <p>Securing the container infrastructure is hard and not doing it may lead to things like cluster takeover or host escapes.</p>