Let's learn about repudiation in this lesson.

We'll cover the following

At a very high level, repudiation is casting doubt on something. Non-repudiation is providing proof about something. In the context of information security, non-repudiation is proving certain actions were carried out by certain individuals.

Digging a little deeper, non-repudiation includes the ability to prove:

  • What happened
  • When it happened
  • Who made it happen
  • Where it happened
  • Why it happened
  • How it happened

Answering the last two usually requires the correlation of several events over a period of time.

How to achieve non-repudiation

Fortunately, auditing of Kubernetes API server events can usually help answer these questions. The following is an example of an API server audit event (you may need to manually enable auditing on your API server).

Get hands-on with 1200+ tech skills courses.