Given the growth and adoption of Kubernetes, a number of projects have been published in the OWASP community to help practitioners assess and secure the security of their containerized infrastructure including the recently released Top Ten for Kubernetes. This OSS project is a community-curated list of the most common Kubernetes risks backed by data collected from organizations varying in maturity and complexity. This session will discuss the project in detail, examples for each of the risks in the list, and how you can get involved.
📚 What will you learn?
✅ Understand how to interpret the OWASP Top Ten for Kubernetes
✅ Dive into the most pressing risks presenting security and development teams using Kubernetes
✅ Explore OSS tools and frameworks to address Kubernetes security risks
✅ Learn how to contribute to the Top Ten project and other OWASP container security projects