KubeArmor Overview and Demo on EKS by Yongkang | Kubernetes Security | Cloud Native Runtime Security
KubeArmor is a cloud-native runtime security enforcement system that restricts the behavior (such as process execution, file access, and networking operations) of pods, containers, and nodes (VMs) at the system level.
KubeArmor leverages Linux security modules (LSMs) such as AppArmor, SELinux, or BPF-LSM to enforce the user-specified policies. KubeArmor generates rich alerts/telemetry events with container/pod/namespace identities by leveraging eBPF.
KubeArmor CNCF project
https://www.cncf.io/projects/kubearmor
Propose KubeArmor to Incubation
https://github.com/cncf/toc/pull/1235
KubeArmor website
https://kubearmor.io
Support matrix
https://docs.kubearmor.io/kubearmor/quick-links/support_matrix
KubeArmor CNCF project
https://www.cncf.io/projects/kubearmor
Propose KubeArmor to Incubation
https://github.com/cncf/toc/pull/1235
Support matrix
https://docs.kubearmor.io/kubearmor/quick-links/support_matrix
Sign up a trial account on AWS Cloud
http://aws.amazon.com/free
Automate an EKS 1.29 Cluster with PostgreSQL
git clone https://github.com/yongkanghe/eks-casa; cd eks-casa
./awsprep.sh if eksctl, kubectl, helm not installed
./eks-deploy.sh
Watch the how-to video
http://aws.yongkang.cloud
KubeArmor installation
./karmor-deploy.sh
KubeArmor uninstallation
./karmor-destroy.sh
KubeArmor Overview video
http://ka1.k8sug.com
KubeArmor Install/Uninstall Automation
https://github.com/yongkanghe/eks-casa
KubeArmor Webpage and GitHub Repo
http://kubearmor.io https://github.com/kubearmor/KubeArmor/
K8SUG – the Most Active Kubernetes Meetup
http://k8sug.com
K8SDM – the Most Active Kubernetes Discussion
http://k8sdm.com
Contact me
he@yongkang.cloud
http://k8sug.com
http://k8sdm.com
http://t.k8sdm.com
http://y.k8sug.com
http://g.k8sug.com
http://t.k8sug.com
by Kubernetes Data Management
linux foundation
