Tech N' Talk: Implementing CIS Kubernetes Security Benchmarks with Kube-Bench

Tech N' Talk Summary

In this Tech N' Talk, Liz Rice of Aqua Security walked us through a new open source project called Kube-Bench that automates the Center for Internet Security's Kubernetes Security Benchmarks. The Kubernetes Bench for Security is a Go application that checks whether Kubernetes is deployed securely by running the checks documented in the CIS Kubernetes 1.6 Benchmark v1.0.0. Tests are configured with YAML files, making this tool easy to update as test specifications evolve.

Liz also gave a brief introduction to yet another fine Kubernetes-related open source project that was just announced yesterday: Manifesto! Manifesto lets users store and query metadata for Docker images. This metadata can be information that you want to store about an image post-build - where labels are not sufficient.

About Our Guest Speaker:

Liz Rice is the creator of the Kube-Bench project and author of the recent O’Reilly How to Containerize Your Go Code book. She is currently the technology evangelist with container security specialists Aqua Security.

Additional Resources:

Slides from the presentation: Kube-Bench Slides

Kubernetes AUTH-SIG: https://github.com/kubernetes/community/tree/master/sig-auth
GitHub Repos:

• https://github.com/aquasecurity/kube-bench
• https://github.com/aquasecurity/manifesto

If you'd like to get notified of upcoming Tech N' Talks, please join our Facebook group and check out our full calendar of upcoming Tech Talks.

Tech N' Talk Playlist

You can find a playlist of all previously recorded Tech N' Talks on YouTube.

Don't forget to leave your feedback and suggestions for each video on YouTube or in the comments section below.

About Tech N' Talk

The Tech N' Talk podcast series aims to bring together thinkers, creators, and coders from across the entire Cloud Native ecosystem to discuss some of the most interesting ideas and innovations in technology today and sparks more conversations and collaborations. Join the discussion online here!

Learn More at the Next OpenShift Commons Gathering in Austin Dec 5th

Numerous other Red Hatters, and CNCF/Kubernetes project leads will be gathering together in Austin for the upcoming OpenShift Commons Gathering co-located with Kubecon at the Austin Convention Center. Register now to reserve your seat at this day long event!

More Austin Gathering details here: http://openshiftgathering.com/openshiftgathering/austin

About OpenShift Commons

OpenShift Commons is the place for organizations that are part of the OpenShift community to connect with peers and other related open source technology communities to communicate and collaborate across all OpenShift projects and stakeholders.

The Commons' goal is to foster collaboration and communication between OpenShift stakeholders to drive success for all members, and expand & facilitate points of connection between members for sharing knowledge and experience to help drive success for the platform and for participants: customers, users, partners, and contributors.

Join OpenShift Commons today http://commons.openshift.org/#join