On this week’s Kubernetes Podcast, your hosts talk to Maya Kaczorowski from Google Cloud about Kubernetes security, and look at announcements from Microsoft, Docker, Cisco and Spotify.

Do you have something cool to share? Some questions? Let us know:

• web: kubernetespodcast.com
• mail: [email protected]
• twitter: @kubernetespod

News of the week

• Microsoft Azure Kubernetes Service goes GA
• IBM launch multi-zone clusters
• Dockercon:
  • Federated application management
  • Extending Kubernetes to Windows Server with Docker Enterprise Edition
  • Design applications in Docker Desktop
• Cisco Live announcement on CCP, Kuberenetes, and Cloud partnership
• How Spotify is migrating from an in-house Docker orchestration platform to Kubernetes

Links from the interview

• Kromtech article on cryptojacking
• Security scanning tools:
  • Clair
  • MicroScanner
• Kubernetes secrets
  • Use an KMS provider for data protection
  • Hashicorp Vault and Kubernetes
• Cluster hardening guides:
  • GKE Security Overview
  • GKE cluster hardening
  • Kubernetes.io docs on cluster security
• Exploring Container Security blog series
  • Overview by Maya Kaczorowski
  • Node and container operating systemes by Aditya Kal and Dan Lorenc
  • Digging into Grafeas container image metadata by Felix Glaser and Wendy Dembowski
  • Protecting and defending your Kubernetes Engine network, by Manjot Pahwa, Ahmet Alp Balkan and Bowei Du
  • Running a tight ship with Kubernetes Engine 1.10 by Aaron Small and Vic Iglesias
  • Using Cloud Security Command Center (and five partner tools) to detect and manage an attack by Maya Kaczorowski and Andy Chang
  • Isolation at different layers of the Kubernetes stack by Tim Allclair and Maya Kaczorowski
• @MayaKaczorowski on Twitter