You're reading from Learning Kubernetes Security A practical guide for secure and scalable containerized environments

Product type Paperback

Published in Jun 2025

Publisher Packt

ISBN-13 9781835886380

Length 390 pages

Edition 2nd Edition

Concepts

Cloud Security

Author (1):

Raul Lapaz

View More author details

Table of Contents (18) Chapters

Preface

1. Kubernetes Architecture FREE CHAPTER

2. Kubernetes Networking

3. Threat Modeling

4. Applying the Principle of Least Privilege in Kubernetes

5. Configuring Kubernetes Security Boundaries

6. Securing Cluster Components

7. Authentication, Authorization, and Admission Control

8. Securing Pods

9. Shift Left (Scanning, SBOM, and CI/CD)

10. Real-Time Monitoring and Observability

11. Security Monitoring and Log Analysis

12. Defense in Depth

13. Kubernetes Vulnerabilities and Container Escapes

14. Third-Party Plugins for Securing Kubernetes

15. Other Books You May Enjoy

Stay relevant in a rapidly changing cybersecurity world – join 65,000+ SecPro subscribers

16. Index

Download a Free PDF Copy of This Book

Appendix: Enhancements in Kubernetes 1.30–1.33

Security Monitoring and Log Analysis

In this chapter, we will discuss security monitoring and log analysis in Kubernetes environments. Security monitoring is crucial for detecting and responding to potential threats in real time as Kubernetes clusters run dynamic workloads.

You will look at the types of logs available in Kubernetes. You will go through auditing in detail and learn how to enable it to have visibility of what is happening in your environment. Also, you will learn about the tools and practices for collecting and analyzing Kubernetes logs. We will introduce how Kubernetes can be utilized to get logs and events using native tools.

We will also talk about how leveraging different log management strategies and observability frameworks makes it possible to identify unusual patterns and potential threats in cluster activities.

In this chapter, we will discuss the following topics: