The Hitchhiker's guide to Kubernetes Pod Security

Get ready for a first in-person event at the new Microsoft campus in Mountain View. On June 22 Microsoft is hosting the Microsoft Azure Open Group for a meetup!

The topic of the evening will focus on Kubernetes Pod Security, presented by Lachie Evenson. Lachie is a leader within Microsoft and the Kubernetes community, he also is an author of Kubernetes Best Practices and CNCF Ambassador, where he is Emeritus Kubernetes Steering & 1.16 Lead.

(tentative) agenda:
6.00 - 6.30 : Networking with appetizers
6.30 - 7.30 : Presentation by Lachie
7.30 - 8.00 : Closing

Session description:
With the release of Kubernetes v1.23, Pod Security admission has now entered beta. Pod Security is a built-in admission controller that evaluates Pod specifications against a predefined set of Pod Security Standards and determines whether to admit or deny the pod from running. Pod Security is the successor to PodSecurityPolicy which was deprecated in the v1.21 release, and will be removed in Kubernetes v1.25. In this presentation I cover the key concepts of Pod Security along with how to use it walking through practical examples. Through education of this new security focused API I hope that cluster administrators and developers alike will use this new mechanism to enforce secure defaults for their workloads.