Loading…
Attending this event?
Seattle, WA
December 10–13, 2018
Click Here for More Information & Registration
View Venue Map
View analytic
Wednesday, December 12 • 10:50am - 11:25am
Friends Don’t Let Friends Leave Their Kubernetes Data Unprotected - Rita Zhang, Microsoft

Sign up or log in to save this to your schedule and see who's attending!

Log in to leave feedback.
In recent headlines, there are increasing news about cloud resources getting hacked caused by attacks on Kubernetes clusters. Failing to properly secure your Kubernetes data can result in cloud resources getting hacked and your application secrets getting stolen. The etcd database contains information that may grant an attacker significant visibility into the state of your cluster.

This presentation focuses on how to use the encryption at rest feature to encrypt secret resources in etcd, preventing parties from gaining access to view the content in etcd and etcd backups. Starting from Kubernetes v1.10, we have added --experimental-encryption-provider-config that controls how API data is encrypted in etcd by KMS providers. We will also look at how you can securely leverage KMS providers as stores for your application secrets, keys, and certs.

Speakers
avatar for Rita Zhang

Rita Zhang

Principal Software Engineer, Microsoft
Rita Zhang is a Principal software engineer at Microsoft, based in San Francisco. She spends most of her days contributing to various open source projects as part of the Azure Cloud Native Compute engineering team. Rita is passionate about open source, running distributed workloads... Read More →



Wednesday December 12, 2018 10:50am - 11:25am
Ballroom 6B