$400 Amazon Gift Card with OnDemand Training through March 10 - Learn More!


To attend this webcast, login to your SANS Account or create your Account.

This webcast has been archived. To view the webcast login into your SANS Portal Account or create an account by clicking the "Get Registered" button on the right. Once you register, you can download the presentation slides below.

The State of Kubernetes Security

  • Wednesday, March 06, 2019 at 1:00 PM EST (2019-03-06 18:00:00 UTC)
  • Liz Rice


  • Aqua Security Inc.

You can now attend the webcast using your mobile device!



Kubernetes is fundamentally a complex system with lots of different potential attack vectors aimed at data theft, currency mining and other threats. This talk provides an overview of the current state of security-related features in Kubernetes, and gives directional starting points on how to secure Kubernetes components and the applications that run on top of these Kubernetes components. For the topics explored, pointers on where to further investigate will be offered.

Topics Covered:

  • Container image scanning and container security
  • Security boundaries (pod, namespace, node, cluster)
  • Securing the control plane and Kubernetes APIs
  • Authentication and authorization, including new tools available
  • Say no to root (and why)!
  • Runtime considerations, secrets management and more!

Speaker Bio

Liz Rice

Liz Rice is the Technology Evangelist with container security specialist Aqua Security, where she also works on container-related open source projects including kube-bench and kube-hunter. She is cochair of the CNCF’s KubeCon + CloudNativeCon 2101 events and has a wealth of software development, team, and product management experience from working on network protocols and distributed systems, and in digital technology sectors such as VOD, music, and VoIP. When not writing code or talking about it, Liz loves riding bikes in places with better weather than her native London, and competing in virtual races on Zwift.

Need Help? Visit our FAQ page or email webcast-support@sans.org.

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.