Safeguarding Clusters: Exploring the Benefits and Navigating the Dangers of Admission Controllers - Amine Hilaly & Igor Velichkovich, AWS

less than 1 minute read

Abstract

Admission controllers are critical components in Kubernetes clusters, responsible for enforcing policies, performing security checks, and even mutating resources during resource admission. However, these controllers can introduce potential risks and vulnerabilities that may compromise cluster stability. In this session, we will dive into the concept of admission controllers, exploring their inner workings, imeplementation, and how they can inadvertently disrupt cluster functionality. Additionally, we will explore the use of new features levering Common Expression Language (CEL) in the Dynamic Admission Controllers. Join our live demo to witness the thrilling chaos of admission controllers! We’ll showcase practical techniques to fix, break, and effectively mitigate risks. Discover their hidden dangers and unlock the secrets to (un)secure your clusters!

Sched URL

Video

Twitter Facebook LinkedIn

About

Conferences

Safeguarding Clusters: Exploring the Benefits and Navigating the Dangers of Admission Controllers - Amine Hilaly & Igor Velichkovich, AWS

Abstract

Video

You May Also Enjoy

You Shall Not Pass! Unless You Are GUAC Verified…. - Parth Patel, Kusari & Dejan Bosanac, Red Hat

Living off the Land Techniques in Managed Kubernetes Clusters - Ronen Shustin & Shay Berkovich, Wiz

Leveraging OCI 1.1 for Enhanced SBOM Integration and Vulnerability Scanning in Harbor - Anais Urlichs, Aqua Security & Shengwen Yu, VMware

Lessons Learned from Generating 100M SBOMs: Google’s Approach to SBOM Compliance - Brandon Lum & Isaac Hepworth, Google