Skip to Main Content
Zero Trust Architecture in Kubernetes
book

Zero Trust Architecture in Kubernetes

by Kim Crawley
November 2022
Intermediate to advanced content levelIntermediate to advanced
50 pages
1h 2m
English
O'Reilly Media, Inc.
Content preview from Zero Trust Architecture in Kubernetes

Chapter 3. Observable State

It’s impossible to secure what cannot be seen. Anyone who has ever worked in a security operations center (SOC) can tell you that their everyday work entails using lots of log analysis software, alerting SOC analysts to any anomaly that appears. Effective defensive security requires logging as many devices and applications in the network as possible, keeping an eye on those logs, and staying informed about performance metrics. If an event isn’t logged, it will be missed by security monitoring software and the human professionals using it. Zero trust architecture (ZTA) is something a secure Kubernetes deployment must have, but it doesn’t come with Kubernetes software out of the box. Establishing an observable state means that all the events and metrics within your application are visible to security controls and the human beings who manage them.

Sounds simple, doesn’t it? Especially since intrusion detection systems and intrusion prevention systems (IDSs and IPSs), endpoint detection and response (EDR) systems, firewalls, and security information and event management (SIEM) systems can be configured to automate most of the log analysis and anomaly detection processes in enterprise networks. A typical enterprise network logs hundreds or thousands of events every minute, so automating as much as possible is an absolute necessity.

Cloud-driven application networks are integral to most enterprises these days. But it’s important to recognize that those innovative ...

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.
Start your free trial

You might also like

Cloud Native DevOps with Kubernetes, 2nd Edition

Cloud Native DevOps with Kubernetes, 2nd Edition

Justin Domingus, John Arundel
Core Kubernetes

Core Kubernetes

Jay Vyas, Christopher Love

Publisher Resources

ISBN: 9781098138646