A security framework is a set of guidelines, best practices, or standards, usually codified as a number of controls.
Security frameworks are often published by government agencies or non-profit research centers. Many groups have published guidance on how to improve the security posture of a Kubernetes environment.
ARMO Platform includes collections of controls that are arranged into frameworks. These are drawn from RegoLibrary, an open source library maintained by ARMO. You can use ARMO Platform to validate running clusters and manifest files against frameworks included in RegoLibrary. By default, ARMO Platform validates against all available frameworks to verify how compliant your Kubernetes environment is with those frameworks.
The most commonly referenced security frameworks are:
- CIS Kubernetes Benchmark
- CIS Amazon Elastic Kubernetes Service (EKS) Benchmark
- CIS Azure Kubernetes Service (AKS) Benchmark
- In the sidebar, click Settings.
- Navigate to Workspace, and click Frameworks.
- Click the arrow next to a framework to view or add controls.
You cannot edit controls in this view. You must use the Controls page.
You can view more information about the control by clicking the Control ID.
Updated 3 months ago