financial-user-group icon indicating copy to clipboard operation
financial-user-group copied to clipboard

Published 20 hours ago β€’ verified publisher icon cncf

Kubernetes Threat Model

Open jonmuk opened this issue 5 years ago β€’ 2 comments

A detailed threat model has been created, taking in scenarios from both internal actors and container compromise. This solution provides a detailed set of attack trees and documentation with accompanying test cases.

jonmuk avatar Jun 01 '19 06:06 jonmuk

Work is underway to review the attack trees ahead of release. This includes informal discussions with the security SIG

jonmuk avatar Jun 01 '19 06:06 jonmuk

Work now merged under: https://github.com/cncf/financial-user-group/tree/master/projects/k8s-threat-model

More work to do here as the work is codified and tested...

jonmuk avatar Nov 18 '19 09:11 jonmuk