As Kubernetes becomes the backbone of modern infrastructure, ensuring its security is more critical than ever. In this talk, we will explore the fundamentals of Kubernetes hardening, focusing on best practices to secure your clusters, mitigate vulnerabilities, and protect your applications. From network policies and RBAC (Role-Based Access Control) to securing the control plane and implementing runtime security, this introduction will equip you with the essential tools and techniques to enhance the security posture of your Kubernetes environment. Whether you're new to Kubernetes or looking to strengthen your existing clusters, this session will provide practical insights to build a more robust and secure system.


I will explore the 2022 Kubernetes Hardening Guide published by the NSA and CISA and talk about Kubernetes security from the perspective of the attacker.