搜索

按 Enter 键快速全文搜索,也可直接发起 AI 搜索
 首页 文库资料 文章资讯  上传文档  发布文章  登录账户

分类

全部云计算&大数据(6)rancher(4)Kubernetes(2)

语言

全部英语(6)

格式

全部PDF文档 PDF(6)
 
本次搜索耗时 0.016 秒,为您找到相关结果约 6 个.

  • pdf文档 秘钥管理秘钥Turtles all the way down - Securely managing Kubernetes Secrets

    call kube-apiserver • Operations with secrets are audit logged ### Kubernetes secrets: 1.7 EncryptionConfig ## Master etcd ![Image](/uploads/documents/c/8/b/a/c8ba83e6f6c7cff81c6e56e8b4d2ac00/p26_1 locally managed key • EncryptionConfig for secrets • Multiple provider options o aesgcm ☐ aesbc ☐ secretbox ### Kubernetes secrets: 1.7 EncryptionConfig kind: EncryptionConfig apiVersion: v1 resources: secrets with a locally managed key, which is then encrypted with a centrally managed key - EncryptionConfig uses aescbc with a KMS provider • Sidecar pod for the KMS plugin ## Terminology and Notation
    0 码力 | 52 页 | 2.84 MB | 1 年前
    3

  • pdf文档 Rancher Hardening Guide Rancher v2.1.x

    file mode is 0600 • The file owner is root:root • The file contains: apiVersion: v1 kind: EncryptionConfig resources: - resources: - secrets providers: - aescbc: keys: yaml chmod 0600 /etc/kubernetes/encryption.yaml • Set the contents to: apiVersion: v1 kind: EncryptionConfig resources: - resources: - secrets: providers: - aescbc: keys:
    0 码力 | 24 页 | 336.27 KB | 2 年前
    3

  • pdf文档 CIS Benchmark Rancher Self-Assessment Guide - v2.4

    appropriate (Scored) Result: PASS Remediation: Follow the Kubernetes documentation and configure a EncryptionConfig file. Then, edit the API server pod specification file /etc/kubernetes/manifests/kube-apiserver configured (Scored) Result: PASS Remediation: Follow the Kubernetes documentation and configure a EncryptionConfig file. In this file, choose aescbc, kms or secretbox as the encryption provider. ##### Audit
    0 码力 | 54 页 | 447.77 KB | 2 年前
    3

  • pdf文档 CIS 1.5 Benchmark - Self-Assessment Guide - Rancher v2.5

    appropriate (Scored) Result: PASS Remediation: Follow the Kubernetes documentation and configure a EncryptionConfig file. Then, edit the API server pod specification file /etc/kubernetes/manifests/kube-apiserver configured (Scored) Result: PASS Remediation: Follow the Kubernetes documentation and configure a EncryptionConfig file. In this file, choose aescbc, kms or secretbox as the encryption provider. ##### Audit
    0 码力 | 54 页 | 447.97 KB | 2 年前
    3

  • pdf文档 Putting an Invisible Shield on Kubernetes Secrets

    => SecretKeyData mapping kms-plugin config apiVersion: apiserver.config.k8s.io/v1 kind: EncryptionConfig resources: - resources: - secrets: providers: - kms: name:
    0 码力 | 33 页 | 20.81 MB | 2 年前
    3

  • pdf文档 CIS 1.6 Benchmark - Self-Assessment Guide - Rancher v2.5.4

    (Automated) Result: pass Remediation: Follow the Kubernetes documentation and configure a EncryptionConfig file. Then, edit the API server pod specification file /etc/kubernetes/manifests/kube-apiserver Self-Assessment Guide - Rancher v2.5.4 Remediation: Follow the Kubernetes documentation and configure a EncryptionConfig file. In this file, choose aescbc, kms or secretbox as the encryption provider. ## Audit:
    0 码力 | 132 页 | 1.12 MB | 2 年前
    3
共 6 条
  • 1
前往
相关搜索词
Kubernetes SecretsEnvelope EncryptionEncryptionConfigKMS外部密钥存储RancherKubernetesRBAC审计日志Node DriversCIS BenchmarkPod Security PolicyRKEDockerTEE-based可信执行环境密钥保护加密技术CIS 1.6 BenchmarkRancher v2.5.4安全配置权限管理