Automotive Linux Summit & Open Source Summit Japan 2018: Protect Your Kubernetes Data, Friends Do...

June 20 - 22 - Tokyo, Japan
Click for Open Source Summit Japan & Automotive Linux Summit Information & Registration

Protect Your Kubernetes Data, Friends Don’t Let Friends Leave their Kubernetes Data Unprotected - Rita Zhang, Microsoft

Feedback form is now closed.

In recent headlines, there are increasing news about cloud resources getting hacked caused by attacks on Kubernetes clusters with unsecured etcd servers ending in massive amounts of password and keys stolen. Failing to properly secure your Kubernetes data can result in cloud resources getting hacked and your application secrets getting stolen. The etcd database contains information that may grant an attacker significant visibility into the state of your cluster.

This presentation focuses on how to use the encryption at rest feature to encrypt secret resources in etcd, preventing parties from gaining access to view the content in etcd and etcd backups. Starting from Kubernetes v1.10, we have added --experimental-encryption-provider-config that controls how API data is encrypted in etcd by KMS providers.

Speakers

Rita Zhang

Principal Software Engineer, Microsoft

Rita Zhang is a software engineer at Microsoft, based in San Francisco. She is on the Azure Cloud Native Compute team building features for Kubernetes upstream and for Azure Kubernetes Service. Rita is passionate about open source and running distributed workloads at scale.

k8s Azure KMS provider 2 pdf

Wednesday June 20, 2018 15:10 - 15:50
Restaurant

Cloud Native & Serverless & Microservices

Experience Level Intermediate

Automotive Linux Summit & Open Source Summit Japan 2018

Sign up or log in to save this to your schedule and see who's attending!

Rita Zhang

Attendees (68)