Mind the Gap! Bringing Together Cloud Services and Managed K8s Environments

This talk addresses the challenges of integrating managed Kubernetes environments (like EKS, AKS, GKE) with other cloud services such as databases and object storage. Speakers discuss authentication and authorization for both human users and workloads, and techniques for managing external secrets within clusters. They also highlight security risks, including how attackers can pivot from compromised workloads to compromise entire cloud environments, and provide mitigation strategies. The presentation emphasizes leveraging cloud-native identity management and security best practices to build robust applications while avoiding vendor lock-in.