logo
Dates

Author


Conferences

Tags

Sort by:  

Authors: Ariel Shuper
2022-06-22

tldr - powered by Generative AI

The need for a deeper Kubernetes risk assessment framework beyond the current CIS benchmarks
  • The current common Kubernetes risk assessment framework is based on the CIS benchmarks for Kubernetes
  • The framework only covers security misconfigurations and doesn't go deeper than the security configurations of the various elements
  • Real attacks can start by multiple elements expanding beyond security misconfigurations
  • There is a need for an additional risk-assessment framework that can go deeper than the Kubernetes configurations, verifying that all other attack methods, steps, and stages are covered
  • MITRE has crafted an ATT&CK matrix for containers/Kubernetes, which consists of tactics and techniques used in real attacks
Authors: Magno Logan
2021-09-24

tldr - powered by Generative AI

The presentation discusses different attack scenarios on Kubernetes clusters and provides best practices for securing them.
  • Overview of Kubernetes architecture and components
  • Using K8s Threat Matrix and MITRE ATT&CK for Containers to demonstrate attack phases
  • Best practices for securing Kubernetes clusters
  • Anecdote about a vulnerable Drupal web application used for modeling attacks