Node Isolation: When it Matters (Kubecon 2019, San Diego)

What happens if an attacker escapes a container and compromises your node? Is it game over for the whole cluster, or can you limit the blast radius?

Tim Allclair and Greg Castle, give us a recap from their #KubeCon + #CloudNativeCon presentation about “node isolation” and how Kubernetes scheduling can be used to to execute workloads on separate nodes.

Watch other episodes in the KubeCon, San Diego playlist →
Subscribe to the GCP YouTube Channel →

Duration: 3:7
Publisher: Google Cloud
You can watch this video also at the source.