Cloud Security Podcast

Kubernetes Network Security for Multi Tenancy

Dec 12, 2023

Cailyn Edwards, Senior Security Engineer at Shopify, discusses the complexities of Kubernetes Network Security in a multi-tenant environment, including tools and tactics for securing Kubernetes environments. She also shares insights from her journey at Shopify and tips for advancing the security maturity of Kubernetes networks.

26:22

Creator website

Episode guests

Cailyn Edwards

AI Summary

Highlights

AI Chapters

Episode notes

Podcast summary created with Snipd AI

Quick takeaways

Understanding the communication needs within a Kubernetes network and locking down access to necessary connections is crucial for threat modeling in multi-tenant environments.

Implementing network policies, using CNCF projects like Istio and Cilium, and following the Kubernetes Security Checklist are key tools and best practices for securing Kubernetes networks.

Deep dives

Importance of Network Security in Kubernetes

Kaelin from Shopify discusses the importance of threat modeling in Kubernetes network security, particularly in a multi-tenant context. She emphasizes the need to understand the communication needs within the network and the importance of locking down access to only necessary connections. She highlights the use of network policies and CNCF projects like Istio and Cilium as tools to secure Kubernetes networks. Kaelin also highlights the Kubernetes Security Checklist as a resource for implementing best practices and mentions the ongoing work of CNCF's SIG Security in creating a Kubernetes hardening guide.

Understanding the Complexity of Network Security in Kubernetes

01:31

Responding to Network Security Threats in Kubernetes

03:10

Introduction

2min

Understanding Kubernetes Networking and Security

18min

Securing Kubernetes Networks and Learning Resources

2min

Discussion on Hobbies and Superpowers

2min

Experience at Koopcon and Getting Involved in Projects

2min

Kubernetes security explained : We spoke to Cailyn Edwards, CNCF Ambassador and Senior Security Engineer at Shopify. Interview was recorded at Kubecon NA 2023. We asked her about the complexities of Kubernetes Network Security in a multi-tenant environment. During the interview, she shared the nuances of Kubernetes network security in multi-tenant setups, tools and tactics for securing Kubernetes environments, insights from her journey at Shopify and tips for advancing the security maturity of Kubernetes networks.

Thank you to our episode sponsor Vanta - You can check them out at vanta.com/cloud

Podcast Twitter - ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠@CloudSecPod⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠

If you want to watch videos of this LIVE STREAMED episode and past episodes - Check out our other Cloud Security Social Channels:

- ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠Cloud Security Newsletter ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠

- ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠Cloud Security BootCamp⁠⁠⁠⁠⁠

Questions asked:

(00:00) Introduction (02:25) A bit about Cailyn (03:08) How is Kubernetes Networking different? (04:20) Foundational pieces of Kubernetes Networking (06:21) Whats missing in Kubernetes Networking? (07:47) What is Multi Tenancy? (10:20) What are some of the common threat models? (13:16) How are people responding to threats? (14:41) Where to start learning about this? (16:26) Best practices for Kubernetes Networking (18:16) What becomes more important with maturity? (21:14) Resources to learn more about Kubernetes Security (22:30) The Fun Section

Resources shared during the episode:

Kubernetes Security Checklist - https://kubernetes.io/docs/concepts/security/security-checklist/

Pentesting your own cluster with Liz Rice - https://www.youtube.com/watch?v=fVqCAUJiIn0

Get the Snipd
podcast app

Unlock the knowledge in podcasts with the podcast player of the future.

AI-powered
podcast player

Listen to all your favourite podcasts with AI-powered features

Discover
highlights

Listen to the best highlights from the podcasts you love and dive into the full episode

Save any
moment

Hear something you like? Tap your headphones to save it with AI-generated key takeaways

Share
& Export

Send highlights to Twitter, WhatsApp or export them to Notion, Readwise & more

AI-powered
podcast player

Listen to all your favourite podcasts with AI-powered features

Discover
highlights

Listen to the best highlights from the podcasts you love and dive into the full episode

Cloud Security Podcast

Kubernetes Network Security for Multi Tenancy

Episode guests

Podcast summary created with Snipd AI

Quick takeaways

Deep dives

Importance of Network Security in Kubernetes

Key Concepts in Kubernetes Networking

The Challenges of Multi-Tenancy in Kubernetes

Tools and Best Practices for Kubernetes Network Security

Understanding the Complexity of Network Security in Kubernetes

Responding to Network Security Threats in Kubernetes

Get the Snipd
podcast app

AI-powered
podcast player

Discover
highlights

Save any
moment

Share
& Export

AI-powered
podcast player

Discover
highlights

Cloud Security Podcast

Kubernetes Network Security for Multi Tenancy

Episode guests

Podcast summary created with Snipd AI

Quick takeaways

Deep dives

Importance of Network Security in Kubernetes

Key Concepts in Kubernetes Networking

The Challenges of Multi-Tenancy in Kubernetes

Tools and Best Practices for Kubernetes Network Security

Understanding the Complexity of Network Security in Kubernetes

Responding to Network Security Threats in Kubernetes

Get the Snipdpodcast app

AI-poweredpodcast player

Discoverhighlights

Save anymoment

Share& Export

AI-poweredpodcast player

Discoverhighlights

Get the Snipd
podcast app

AI-powered
podcast player

Discover
highlights

Save any
moment

Share
& Export

AI-powered
podcast player

Discover
highlights