Securing Your Amazon EKS Cluster - AWS Online Tech Talks
11.9 هزار بار بازدید -
3 سال پیش
-
In this tech talk, we'll
In this tech talk, we'll cover several security best practices for Amazon EKS. You'll learn more about the security features that enable data protection and access controls within your Amazon EKS clusters. You'll also understand configuration options and available tools through demos to help secure your Kubernetes clusters on Amazon EKS.
Learning Objectives:
*Learn the security features available to you in Amazon EKS
*Learn how to secure your clusters with the various configuration options and tools
*Learn several security best practices for Amazon EKS
***To learn more about the services featured in this talk, please visit: https://aws.amazon.com/eks
0:52 Agenda
1:59 Amazon EKS Security Primer
4:47 Amazon EKS Security Controls
9:48 Authentication - AWS IAM
12:04 Demo 1
15:01 Authentication - OIDC IDP
17:35 Demo 2
30:52 Audit logs and CloudWatch
31:35 EKS Best Practices for Security
36:06 Resources and links to security content
1. Control plane logging: https://docs.aws.amazon.com/eks/lates...
2. Endpoint access: https://docs.aws.amazon.com/eks/lates...
3. Authentication controls: https://docs.aws.amazon.com/eks/lates... #ContainersFromTheCouch - EKSWorkshop...
4. ECR image scanning and encryption tech talks: Container Image Scanning with Amazon ...; Encrypting ECR Images with KMS Keys f...
5. IAM roles for services accounts: #ContainersFromTheCouch - EKSWorkshop...; https://aws.amazon.com/blogs/opensour...
6. Secrets Encryption tech talk: Encrypting Secrets in Amazon EKS - AW...
7. CIS EKS Benchmark overview demo: AWS Container Day - CIS Amazon EKS Be...; #ContainersFromTheCouch - EKSWorkshop...
8. Security Groups for pods: Deploying Wordpress to Amazon EKS: Ma...
9. OIDC Identity Provider Authentication: https://docs.aws.amazon.com/eks/lates... https://aws.amazon.com/blogs/containe...
10. Fargate Runtime Security SYS_PTRACE capability demo: Runtime security using Alcide in Amaz...
11. OPA admission controller security on EKS demo: OPA the Open Policy Agent - #Containe... Subscribe to AWS Online Tech Talks On AWS:
https://www.seevid.ir/c/AWSOnlineTec...
Follow Amazon Web Services:
Official Website: https://aws.amazon.com/what-is-aws
Twitch: Twitch: aws
Twitter: Twitter: awsdevelopers
Facebook: Facebook: amazonwebservices
Instagram: Instagram: amazonwebservices
☁️ AWS Online Tech Talks cover a wide range of topics and expertise levels through technical deep dives, demos, customer examples, and live Q&A with AWS experts. Builders can choose from bite-sized 15-minute sessions, insightful fireside chats, immersive virtual workshops, interactive office hours, or watch on-demand tech talks at your own pace. Join us to fuel your learning journey with AWS.
#AWS
Learning Objectives:
*Learn the security features available to you in Amazon EKS
*Learn how to secure your clusters with the various configuration options and tools
*Learn several security best practices for Amazon EKS
***To learn more about the services featured in this talk, please visit: https://aws.amazon.com/eks
0:52 Agenda
1:59 Amazon EKS Security Primer
4:47 Amazon EKS Security Controls
9:48 Authentication - AWS IAM
12:04 Demo 1
15:01 Authentication - OIDC IDP
17:35 Demo 2
30:52 Audit logs and CloudWatch
31:35 EKS Best Practices for Security
36:06 Resources and links to security content
1. Control plane logging: https://docs.aws.amazon.com/eks/lates...
2. Endpoint access: https://docs.aws.amazon.com/eks/lates...
3. Authentication controls: https://docs.aws.amazon.com/eks/lates... #ContainersFromTheCouch - EKSWorkshop...
4. ECR image scanning and encryption tech talks: Container Image Scanning with Amazon ...; Encrypting ECR Images with KMS Keys f...
5. IAM roles for services accounts: #ContainersFromTheCouch - EKSWorkshop...; https://aws.amazon.com/blogs/opensour...
6. Secrets Encryption tech talk: Encrypting Secrets in Amazon EKS - AW...
7. CIS EKS Benchmark overview demo: AWS Container Day - CIS Amazon EKS Be...; #ContainersFromTheCouch - EKSWorkshop...
8. Security Groups for pods: Deploying Wordpress to Amazon EKS: Ma...
9. OIDC Identity Provider Authentication: https://docs.aws.amazon.com/eks/lates... https://aws.amazon.com/blogs/containe...
10. Fargate Runtime Security SYS_PTRACE capability demo: Runtime security using Alcide in Amaz...
11. OPA admission controller security on EKS demo: OPA the Open Policy Agent - #Containe... Subscribe to AWS Online Tech Talks On AWS:
https://www.seevid.ir/c/AWSOnlineTec...
Follow Amazon Web Services:
Official Website: https://aws.amazon.com/what-is-aws
Twitch: Twitch: aws
Twitter: Twitter: awsdevelopers
Facebook: Facebook: amazonwebservices
Instagram: Instagram: amazonwebservices
☁️ AWS Online Tech Talks cover a wide range of topics and expertise levels through technical deep dives, demos, customer examples, and live Q&A with AWS experts. Builders can choose from bite-sized 15-minute sessions, insightful fireside chats, immersive virtual workshops, interactive office hours, or watch on-demand tech talks at your own pace. Join us to fuel your learning journey with AWS.
#AWS
3 سال پیش
در تاریخ 1399/12/28 منتشر شده
است.
11,919
بـار بازدید شده