Talk
Intermediate
First Talk

Kubernetes Security: A Deep Dive into Essential Tools and Techniques

Rejected

Session Description

With the increasing adoption of Kubernetes (k8s), securing k8s clusters has become paramount. This talk will showcase the criticality of k8s cluster security, pinpoint key security areas, and delve into the tools available for this purpose. Through a case study, we will compare major open-source k8s security tools, evaluating their ease of setup and use, policy development and enforcement, and adaptability and granularity concerning workloads on the k8s platform.

We will explore why Kubernetes security is crucial by examining notable security incidents and their consequences. We will identify key areas that require security, starting with Kubernetes' default security features and progressing to more advanced security measures. We will discuss enforcing these measures using tools like OPA Gatekeeper, Kubewarden, and Kyverno. Lastly, we will demonstrate an example policy implementation with each tool and discuss their advantages and disadvantages.

Key Takeaways

This talk will raise awareness about the importance of securing Kubernetes environments. Pinpointing key security areas and discussing both basic and advanced security measures will provide a comprehensive understanding of what needs to be secured in Kubernetes clusters. Comparing major open-source Kubernetes security tools through a case study will help users to make an informed decision.

References

https://kyverno.io/

Session Categories

Engineering practice - productivity, debugging
Which track are you applying for?
Main track

Speakers

Anandhkumar TV
Platform Engineer II Digitalocean
https://www.linkedin.com/in/anandhkumar-tv/
Anandhkumar TV
Nikhil Pathak
Senior Engineer Digitalocean
Nikhil Pathak

Reviews

25 %
Approvability
1
Approvals
3
Rejections
0
Not Sure

This talk highlights the importance of securing Kubernetes clusters by analyzing key security areas and comparing major open-source tools like OPA Gatekeeper, Kubewarden, and Kyverno. It includes a case study evaluating these tools in terms of setup, policy enforcement, and workload adaptability. Relevant talk exploring the security for Kubernetes. This talk also discusses open source tools so relevant for the conference.

Reviewer #1
Approved

Doesn't have a detailed outline of what the talk will cover.

Reviewer #2
Rejected

The speakers are not major contributors to the FOSS projects behind what they are talking. It is interesting to talk about k8s security but this does not contribute to the FOSS ecosystem of India. So this isn't well-suited for the main track of a national FOSS conference. More for a k8s conference

Reviewer #3
Rejected

The reviewers felt that the proposal is more suited for a Kubernetes conference, outline lacked detail and that it lacked a specific FOSS angle.

Reviewer #4
Rejected