Encryption and etcd: The key to securing Kubernetes

While it is easy to deploy containers, operationalizing these containers at scale — especially in concert with microservices and multiple cloud providers — requires careful planning. This is where an orchestration tool is a must. 

Container orchestration is the business of Kubernetes. Derived from the Greek word meaning helmsman, Kubernetes is your pilot to help you navigate through the waters of containerized workloads and services, facilitating both declarative configuration and automation. 

To achieve its purpose, Kubernetes needs a helper called etcd.

What is etcd?

Etcd is defined as “a strongly consistent, distributed key-value store that provides a reliable way to store data that needs to be accessed by a distributed system or cluster of machines.” One of the most notable uses is the management of configuration data, state data and metadata for Kubernetes.

Etcd is very popular as it serves many qualities according to IBM:

Fully replicated: every node in an etcd cluster has access to the full data store. Highly available: there is no single point of failure and it gracefully tolerates hardware failures and network partitions Reliably consistent: every data “read” returns the latest data “write” across all clusters Fast: supports 10,000 writes per second Simple:

Read More: https://resources.infosecinstitute.com/topic/encryption-and-etcd-the-key-to-securing-kubernetes/