From the course: Kubernetes and Cloud Native Security Associate (KCSA) Cert Prep
Join today to access over 24,700 courses taught by industry experts.
Artifact repo and image security
From the course: Kubernetes and Cloud Native Security Associate (KCSA) Cert Prep
Artifact repo and image security
Now, when we're thinking about what an image repository gives us, where we saw our artifacts, because usually our container images are some type of artifact, right? And because of that, it is a great entry point for attackers. Now, how can we kind of get around this? So if you create a container image for App A, you need a place to store it and you also need a method of securing it. Now the majority of security comes down to who can access the container image repo, who's able to see the container image repo? Who can modify, who can push changes, who can create new versions of that container image? All right. So let's dive into a few different container image repos. The first is Docker Hub, which has both a public and a free repo, and a private and paid repo. Docker Hub doesn't really have any security features out of the box, so really, all the security is on you. But Artifactory, on the other hand, does actually have a lot of security features out of the box. So for example, JFrog…
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.
Contents
-
-
-
What is cloud native security?1m 52s
-
OWASP Kubernetes Top 102m 7s
-
(Locked)
What is infrastructure security?1m 26s
-
(Locked)
The four Cs of cloud native security3m 29s
-
(Locked)
Cloud provider and infrastructure security4m
-
(Locked)
Isolation techniques1m 42s
-
(Locked)
Artifact repo and image security1m 39s
-
(Locked)
Workload and app code security4m 38s
-
-
-
-
-
-
-