Most discussions of Kubernetes® security focus on how challenging it is to secure a cluster. Kubernetes offers only a handful of native security features, we’re told, which makes it exceedingly difficult to secure every layer of a Kubernetes environment.
It’s true that Kubernetes provides few built-in security tools and that securing Kubernetes requires addressing multiple types of potential vulnerabilities across multiple layers of infrastructure. That doesn’t mean, however, that you need to think of Kubernetes security as being hopelessly challenging.
