CIS Kubernetes Benchmark
Profile Applicability Level 1 Description: HostPath volumes allow containers to mount files or directories from the host node’s filesystem into a p...
Fri, 9 May, 2025 at 6:30 AM
Profile Applicability: Level 1 Description: An audit policy in Kubernetes defines the level of detail captured in the audit logs. A minimal audit p...
Fri, 9 May, 2025 at 6:33 AM
Profile Applicability: Level 1 Description: Windows HostProcess Containers allow containers to run directly on the Windows host, with access to the...
Fri, 9 May, 2025 at 6:36 AM
Profile Applicability: Level 1 Description: Bootstrap token authentication is a mechanism primarily used during the initial setup and bootstrapping of...
Fri, 9 May, 2025 at 6:38 AM
Profile Applicability: Level 1 Description: Service account token authentication is a mechanism used in Kubernetes for service accounts to authenti...
Fri, 9 May, 2025 at 6:43 AM
Profile Applicability: Level 1 Description: Kubernetes allows containers to run with additional Linux capabilities, granting them extended privileg...
Fri, 9 May, 2025 at 6:46 AM
Profile Applicability: Level 1 Description: Client certificate authentication for users involves using certificates to authenticate users to the Ku...
Fri, 9 May, 2025 at 6:49 AM
Profile Applicability: Level 2 Description: The etcd component of Kubernetes stores critical cluster data, including configuration and state inform...
Fri, 9 May, 2025 at 6:52 AM
Profile Applicability: Level 1 Description: The --peer-auto-tls argument controls whether automatic TLS encryption is enabled for peer-to-peer comm...
Fri, 9 May, 2025 at 6:56 AM
Profile Applicability: Level 1 Description: Ensure that the --peer-client-cert-auth argument is set to true in the Kubernetes API server configurati...
Fri, 9 May, 2025 at 7:01 AM