NSA, CISA have released the Kubernetes Hardening Guidance

Ο Εθνική Υπηρεσία Ασφαλείας (NSA από το National Security Agency) και ο Οργανισμός Ασφάλειας Κυβερνοand Infrastructure Security Agency (CISA from the Cybersecurity and Infrastructure Security Agency) today published a Cybersecurity Technical Report. It is called "Kubernetes Hardening Guidance”(Download the PDF).

The publication describes in detail the threats to Kubernetes environments and provides configuration instructions to minimize the risk.

210803 d im742 1235 jpg

Το Kubernetes είναι ένα ανοιχτού κώδικα που αυτοματοποιεί την ανάπτυξη, την κλιμάκωση και τη διαχείριση εφαρμογών που τρέχουν σε containers. Τα Kubernetes clusters συχνά φιλοξενούνται σε περιβάλλον cloud και παρέχουν επιπλέον ευελιξία σε σύγκριση με τις παραδοσιακές πλατφόρμες λογισμικού.

Kubernetes is being targeted συνήθως για τρεις λόγους: για την , stealing computing power or using it in denial of service attacks. Data theft is traditionally the primary motivation of attackers. However, malicious users may attempt to use Kubernetes to leverage a network's underlying infrastructure for computing power to mine cryptocurrencies.

Η έκθεση περιγράφει λεπτομερώς πως μπορείτε να ασφαλίσετε συστήματα Kubernetes. Οι κύριες ενέργειες περιλαμβάνουν τη σάρωση containers και Pods για ευπάθειες ή εσφαλμένες , εκτέλεση container και Pods με ελάχιστα προνόμια και χρήση διαχωρισμού δικτύου, τείχη προστασίας, ισχυρό έλεγχο ταυτότητας και έλεγχο καταγραφής.

To ensure application security, system administrators should follow the instructions in the Technical Report and update their systems to minimize the risk. The NSA and CISA also recommend periodic revisions of Kubernetes settings and vulnerability scans to ensure that security fixes are applied.

The NSA and CISA guidelines focus on security challenges and recommend that system administrators "harden" their environments wherever possible. The NSA released this guide for the of the Ministry ς, της Βιομηχανικής Αμυντικής Βάσης και των Εθνικών Συστημάτων Ασφάλειας.

Of course, to "fix" her profile a bit, since everyone from Snowden onwards knows what work she does as a service.

iGuRu.gr The Best Technology Site in Greecefgns

Subscribe to Blog by Email

Subscribe to this blog and receive notifications of new posts by email.

Kubernetes Hardening Guidance, NSA, CISA, iguru, iguru.gr

Written by giorgos

George still wonders what he's doing here ...

Leave a reply

Your email address is not published. Required fields are mentioned with *

Your message will not be published if:
1. Contains insulting, defamatory, racist, offensive or inappropriate comments.
2. Causes harm to minors.
3. It interferes with the privacy and individual and social rights of other users.
4. Advertises products or services or websites.
5. Contains personal information (address, phone, etc.).