Serverless

Hi All,

The NSA just published Kubernetes Hardening Guidance.

This guidance describes the security challenges associated with setting up and securing a Kubernetes cluster. It includes hardening strategies to avoid common misconfigurations and guides system administrators and developers of National Security Systems on how to deploy Kubernetes with example configurations for the recommended hardening measures and mitigations.
This guidance details the following mitigations:
 Scan containers and Pods for vulnerabilities or misconfigurations.
 Run containers and Pods with the least privileges possible.
 Use network separation to control the amount of damage a compromise can cause.
 Use firewalls to limit unneeded network connectivity and encryption to protect confidentiality.
 Use strong authentication and authorization to limit user and administrator access as well as to limit the attack surface.
 Use log auditing so that administrators can monitor activity and be alerted to potential malicious activity.
 Periodically review all Kubernetes settings and use vulnerability scans to help ensure risks are appropriately accounted for and security patches are applied.

------------------------------
Michael Roza CPA, CISA, CIA, MBA, Exec MBA
------------------------------

Nice!

Thank you for this Michael!

Regards,
Marina

------------------------------
M B
------------------------------

Original Message:
Sent: Aug 03, 2021 11:18:46 AM
From: Michael Roza
Subject: NSA Kubernetes Hardening Guidance

Hi All,

The NSA just published Kubernetes Hardening Guidance.

This guidance describes the security challenges associated with setting up and securing a Kubernetes cluster. It includes hardening strategies to avoid common misconfigurations and guides system administrators and developers of National Security Systems on how to deploy Kubernetes with example configurations for the recommended hardening measures and mitigations.
This guidance details the following mitigations:
 Scan containers and Pods for vulnerabilities or misconfigurations.
 Run containers and Pods with the least privileges possible.
 Use network separation to control the amount of damage a compromise can cause.
 Use firewalls to limit unneeded network connectivity and encryption to protect confidentiality.
 Use strong authentication and authorization to limit user and administrator access as well as to limit the attack surface.
 Use log auditing so that administrators can monitor activity and be alerted to potential malicious activity.
 Periodically review all Kubernetes settings and use vulnerability scans to help ensure risks are appropriately accounted for and security patches are applied.

------------------------------
Michael Roza CPA, CISA, CIA, MBA, Exec MBA
------------------------------