From 25a0a265454b132c88911e7796c63b04f6f3086f Mon Sep 17 00:00:00 2001 From: saifeddine Rajhi Date: Wed, 27 Dec 2023 18:06:22 +0100 Subject: [PATCH] Update hardening Kubernetes clusters URL in website to the latest version 1.2 (#44031) * Update 2021-10-05-nsa-cisa-hardening.md NSA and CISA released the 1.0 version of the Kubernetes hardening guide in August 2021 and updated it based on industry feedback in March 2022 (version 1.1). The most recent version of the Kubernetes hardening guidance was released in August 2022 with corrections and clarifications. * Add the changes as an aside to the article text * Update formatting per suggestion * make changes in font * update formatting * more changes in formatting * more changes in formatting * Update 2021-10-05-nsa-cisa-hardening.md * Update 2021-10-05-nsa-cisa-hardening.md * Update 2021-10-05-nsa-cisa-hardening.md --- .../en/blog/_posts/2021-10-05-nsa-cisa-hardening.md | 10 +++++++++- 1 file changed, 9 insertions(+), 1 deletion(-) diff --git a/content/en/blog/_posts/2021-10-05-nsa-cisa-hardening.md b/content/en/blog/_posts/2021-10-05-nsa-cisa-hardening.md index e32d7bcb72738..3605bf794308b 100644 --- a/content/en/blog/_posts/2021-10-05-nsa-cisa-hardening.md +++ b/content/en/blog/_posts/2021-10-05-nsa-cisa-hardening.md @@ -17,7 +17,7 @@ and are in no way a direct recommendation from the Kubernetes community or autho USA's National Security Agency (NSA) and the Cybersecurity and Infrastructure Security Agency (CISA) -released, "[Kubernetes Hardening Guidance](https://media.defense.gov/2021/Aug/03/2002820425/-1/-1/1/CTR_KUBERNETES%20HARDENING%20GUIDANCE.PDF)" +released Kubernetes Hardening Guidance on August 3rd, 2021. The guidance details threats to Kubernetes environments and provides secure configuration guidance to minimize risk. @@ -29,6 +29,14 @@ _Note_: This blog post is not a substitute for reading the guide. Reading the pu guidance is recommended before proceeding as the following content is complementary. +{{% pageinfo color="primary" %}} +**Update, November 2023:** + +The National Security Agency (NSA) and the Cybersecurity and Infrastructure Security Agency (CISA) released the 1.0 version of the Kubernetes hardening guide in August 2021 and updated it based on industry feedback in March 2022 (version 1.1). + +The most recent version of the Kubernetes hardening guidance was released in August 2022 with corrections and clarifications. Version 1.2 outlines a number of recommendations for [hardening Kubernetes clusters](https://media.defense.gov/2022/Aug/29/2003066362/-1/-1/0/CTR_KUBERNETES_HARDENING_GUIDANCE_1.2_20220829.PDF). +{{% /pageinfo %}} + ## Introduction and Threat Model Note that the threats identified as important by the NSA/CISA, or the intended audience of this guidance, may be different from the threats that other enterprise users of Kubernetes consider important. This section