Policy Matters! A Policy Working Group Introduction and Deep Dive

The Policy Working Group in Kubernetes is focused on promoting policy report API, completing the GRC paper, and discussing compliance mapping. They are also updating the Kubernetes policy page.

• The Policy Working Group is promoting the policy report API to be standardized and used by different tools and projects.
• They are completing the GRC paper to map policies into other business functions and exploring how policies can be used for operations automation and cost management.
• The group is discussing compliance mapping to automate compliance assessments and move from manual to continuous compliance.
• They are updating the Kubernetes policy page to make it more helpful.
• The group meets every second Wednesday at 9:00 am Pacific time.

The group is exploring how policies can be used for cost management. Policies play a critical role in resource management, especially for cloud-based clusters. By automating certain things through mutate and generate type of policy definitions, cost management can be improved.

Kubernetes policies are configuration objects that control other configuration and runtime behaviors. The Kubernetes Policy Working Group (WG) is charted with researching and developing policy implementations, architectures, and best practices for Kubernetes. In this session Jim and Frank will provide an overview of the Policy WG projects, deliverables, and activities, and then deep dive into the Policy Report API which is being proposed as a standard by the Policy WG to unify policy observability across different areas of Kubernetes security and automation. They will demonstrate how different engines and scanners utilize this API, and show how a common policy administration point can leverage the API to provide visibility across the continuous delivery pipeline. They will also detail how to get involved with the working group activity tracks to learn, contribute, and share in the areas of policy, governance, and compliance!