DEV Community

Discussion on: Security in times of Docker & K8s; tech debt; & embedded integration frameworks

pranay01 profile image
Pranay Prateek

Hey, nice note on Kubernetes security! Do you think security has become more challenging with the advent of k8s and containerization?

mohanarpit profile image
Arpit Mohan Author

Security has always been a challenge in any deployment. Infosec folks have historically been at odds with software engineers who just want stuff to work.

It's important for default settings in all applications to become more secure. Docker's default of running applications as root definitely created security concerns. There's already enough literature on how to secure Docker containers, but most of them involve more work. Orchestration frameworks like k8s are still young and will definitely get better with time and more exposure.