CISA and NSA Release Kubernetes Hardening Guidance

Original release date: August 2, 2021 | Last revised: August 3, 2021

The National Security Agency (NSA) and CISA have released Kubernetes Hardening Guidance, a cybersecurity technical report detailing the complexities of securely managing Kubernetes—an open-source, container-orchestration system used to automate deploying, scaling, and managing containerized applications. 

This report describes the security challenges associated with setting up and securing a Kubernetes cluster, and presents hardening strategies to guide system administrators avoid common misconfigurations. 

CISA encourages users and administrators to ensure the security of applications by following the hardening guidance outlined in this report. 

This product is provided subject to this Notification and this Privacy & Use policy.