Kubernetes Security Posture
Kubernetes (K8S) is supported in the following environments: EKS, AKS, GKE, and vanilla.
OWASP Kubernetes Top 10
Panoptica platform secures Kubernetes clusters and also covers OWASP Kubernetes Top 10. The OWASP Kubernetes Top 10 is aimed at helping security practitioners, system administrators, and software developers prioritize risks around the Kubernetes ecosystem. The Top Ten is a prioritized list of these risks backed by data collected from organizations varying in maturity and complexity.
In the Security Findings page in Panoptica platform, there is a label that specify the relevant OWASP Kubernetes Top 10 risk for the finding. Additionally, Panoptica performs image scanning and active runtime protection to identify known vulnerabilities and malicious activity.
OWASP Kubernetes Top 10 | Panoptica Label | Panoptica Products | Detection Includes |
---|---|---|---|
K01:2022 Insecure Workload Configurations | OWASP K01 |
|
|
K02:2022 Supply Chain Vulnerabilities | No label |
|
|
OWASP K03 |
|
| |
No label |
|
| |
K05:2022 Inadequate Logging and Monitoring | OWASP K05 |
|
|
K06:2022 Broken Authentication Mechanisms | OWASP K06 |
|
|
K08:2022 Secrets Management Failures | OWASP K08 |
|
|
K09:2022 Misconfigured Cluster Components | OWASP K09 |
|
|
OWASP K10 |
|
|
Updated 16 days ago