Container and Kubernetes Security
While Kubernetes may be the standard operating system for containers in the cloud, they are difficult to manage.
It’s difficult to get visibility into dynamic container environments, and the fact that 54% of containers live for five minutes or less, makes it very challenging to investigate anomalous behavior and breaches.
Still, container security risks should be addressed as early as possible in the development lifecycle. This checklist provides guidance for Cloud/DevOps/DevSecOps teams, including:
- Securing Infrastructure as Code (IaC)
- Securing the Kubernetes control panel
- Securing workloads at runtime
- Incident response and forensics