How to Secure Secrets

Explore how to secure Kubernetes Secrets by understanding their vulnerabilities, securing etcd communication, limiting access, and adopting best practices to protect sensitive data in your Kubernetes clusters.

We'll cover the following...

Insecure configurations
The way to secure Secrets

Insecure configurations

Almost everything Kubernetes needs is stored in etcd. This includes Secrets. The problem is that they are stored as plain text. Anyone with access to etcd has access to Kubernetes Secrets. We can limit access to etcd, but that’s not the end of our troubles.

etcd stores data to disk as plain text. Restricting the access to etcd still leaves the Secrets vulnerable to anyone who has access to the file system. That, in a way, diminishes the advantage of storing Secrets in ...

1.How Did We Get Here?

2.Pods

3.ReplicaSets

4.Services

5.Deployments

6.Ingress

7.Volumes

8.ConfigMaps

9.Secrets

10.Namespaces

11.Securing Kubernetes Clusters

12.Managing Resources

13.Creating A Production-Ready Kubernetes Cluster

Cloud Lab

14.Persisting State

Cloud Lab

Cloud Lab

15.Appendix: Running a Kubernetes Cluster Locally

How to Secure Secrets

Insecure configurations