📌 To enhance Kubernetes security, you must regulate and limit the number of pods that may be generated and deployed in your environment. Kubernetes has given a beta feature called Pod Security Policy (PSP) for this purpose, which will shortly be deprecated and replaced with a standard called Pod Security Standards (PSS).
📌 Because PSPs are being phased out and are no longer being actively developed, cluster administrators and operators must replace those security measures. This need can be met by two options:
➡Policy-as-code (PAC) solutions from the Kubernetes ecosystem.
➡Kubernetes Pod Security Standards (PSS) & Pod Security Admission (PSA).
📌 The Kubernetes Auth Special Interest Group produced the Pod Security Standards (PSS) and Pod Security Admission (PSA) in response to the PSP deprecation and the continued requirement to govern pod security out-of-the-box, using a built-in Kubernetes solution (PSA). The PSA effort includes a webhook project for admission controllers that implements the controls described in the PSS.
🤓 So, want to know about 𝐏𝐨𝐝 𝐒𝐞𝐜𝐮𝐫𝐢𝐭𝐲 𝐒𝐭𝐚𝐧𝐝𝐚𝐫𝐝𝐬 (𝐏𝐒𝐒)?
Check out this blog https://k21academy.com/kubernetes65 – that covers:
🍀 Pod Security Policy & its depreciation
🍀 Moving to a new pod security solution
🍀 Pod Security Standards (PSS) and Pod Security Admission (PSA)
💫 Want more in-depth training? Register for the 𝐅𝐑𝐄𝐄 𝐂𝐋𝐀𝐒𝐒 now at https://k21academy.com/k8s02
Oracle ACE, Author, Speaker and Founder of K21 Technologies & K21 Academy : Specialising in Design, Implement, and Trainings.