Kubernetes is fundamentally a complex system with lots of different potential attack vectors aimed at data theft, currency mining and other threats. Liz Rice, a renowned technology evangelist, will take us through an overview of the current state of security-related features in Kubernetes, and offer directional starting points on how to secure Kubernetes components and the applications that run on top of these Kubernetes components.
Brice Fernandes, software engineer and entrepreneur at Weaveworks, will then demonstrate how you can build a secure and reliable Kubernetes deployment pipeline with GitOps best practices, separating the responsibility between packaging software and releasing it to a production environment. GitOps offers stronger security guarantees through keeping credentials and other secrets sealed inside the cluster as well as putting an emphasis on Git’s strong correctness and cryptography. In addition we will show image scanning and briefly explore how to best prevent common Git attacks.