Frameworks
A security framework is a set of guidelines, best practices, or standards, usually codified as a number of controls.
Security frameworks are often published by government agencies or non-profit research centers. Many groups have published guidance on how to improve the security posture of a Kubernetes environment.
ARMO Platform includes collections of controls that are arranged into frameworks. These are drawn from RegoLibrary, an open source library maintained by ARMO. You can use ARMO Platform to validate running clusters and manifest files against frameworks included in RegoLibrary. By default, ARMO Platform validates against all available frameworks to verify how compliant your Kubernetes environment is with those frameworks.
Published frameworks
The most commonly referenced security frameworks are:
-
NSA-CISA Kubernetes Hardening Guide , published by the United States National Security Agency and Cybersecurity and Infrastructure Security Agency
-
CIS Benchmarks, published by the Center for Internet Security:
- CIS Kubernetes Benchmark
- CIS Amazon Elastic Kubernetes Service (EKS) Benchmark
- CIS Azure Kubernetes Service (AKS) Benchmark
-
MITRE ATT&CK Threat Matrix for Kubernetes, published by MITRE and Microsoft
View controls included in a framework
- In the sidebar, click Settings.
- Navigate to Workspace, and click Frameworks.
- Click the arrow next to a framework to view or add controls.
You cannot edit controls in this view. You must use the Controls page.
You can view more information about the control by clicking the Control ID.
Updated about 1 year ago