Kubernetes Security Hardening Guidance

Essential Kubernetes hardening guidance from the National Security Agency (NSA) and the Cybersecurity and Infrastructure Security Agency (CISA).

Aug 03, 2021

Ryan Blunden

Technical Content Creator

Back to the blog

Kubernetes Security Hardening Guidance

Security

How to increase the security posture of a Kubernetes cluster is always top of mind for cluster administrators.

While we recommend starting with the documented Kubernetes security best practices, a new resource to add to your must-read list is the Kubernetes Hardening Guidance Report.

Produced by the National Security Agency (NSA) and the Cybersecurity and Infrastructure Security Agency (CISA), it details the most critical threats to the security of Kubernetes environments, providing guidance for cluster configuration in order to minimize risk.

More specifically, the report focuses on hardening techniques in three main areas:

Container and Pod scanning for vulnerabilities, weaknesses, and misconfiguration
Running containers and Pods with the most restrictive set of privileges possible
Network security recommendations for firewall configuration, network separation, authentication, and log auditing

You can download the report here.

Enjoying this content? Stay up to date and get our latest blogs, guides, and tutorials.

Related Content

Explore More

Security

No Touch Secrets with DopplerProvisioning Cloud Infrastructure using Doppler Secrets - A Series Part One - The Setup

Security

What is the STRIDE threat model?Each letter in STRIDE represents a different type of security threat that DevOps teams need to plan for in their platform

Company

How Doppler scaled engineering with stakeholder-driven workflowsDiscover how Doppler transformed its product and engineering workflows with a flexible, stakeholder-driven approach.

Enter the new era of secrets management

Trusted by the world’s best DevOps and security teams. Doppler is the secrets manager developers love.

Start for Free Get Demo