From Kubelet to Istio: Kubernetes Network Security Demystified - Andrew Martin, ControlPlane
Want to view more sessions and keep the conversations going? Join us for KubeCon + CloudNativeCon North America in Seattle, December 11 - 13, 2018 (http://bit.ly/KCCNCNA18) or in Shanghai, November 14-15 (http://bit.ly/kccncchina18). From Kubelet to Istio: Kubernetes Network Security Demystified - Andrew Martin, ControlPlane (Intermediate Skill Level) Kubernetes provides multiple layers of network security including the control plane, etcd, the CNI network, network policies, and - with Istio on top - the requests between applications themselves. In this talk we explore the underlying technologies on which these layers are built using approachable examples and demonstrations. Attendees can expect to gain an understanding of these implementations and the principles behind encryption, identity, and trust in Kubernetes.- What are TLS, X.509, and mutual authentication? - Why cloud native communication should be encrypted by default - Kubernetes component intercommunication - CNI and network policy for applications - Bootstrapping identity with SPIFFE - Mutual TLS, route rules, and destination policies in Istio "About Andrew Andrew has a strong test-first engineering background gained developing and deploying high volume web applications. Proficient in application development and systems architecture and maintenance, he is comfortable profiling and securing every tier of a bare metal or virtualised web stack, and has battle-hardened experience delivering containerised solutions to enterprise clients. He is a co-founder at https://control-plane.io" Join us for KubeCon + CloudNativeCon in Barcelona May 20 - 23, Shanghai June 24 - 26, and San Diego November 18 - 21! Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy and all of the other CNCF-hosted projects. Join us for KubeCon + CloudNativeCon in San Diego November 18 - 21. Learn more at https://bit.ly/2XTN3ho. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy and all of the other CNCF-hosted projects.
![IoK: Istio-on-Kubernetes Deep Dive [I] - Daneyon Hansen, Cisco](https://i.ytimg.com/vi/NMa9frJs1hA/hq720.jpg?sqp=-oaymwEbCNAFEJQDSFryq4qpAw0IARUAAIhCGAG4AvcY&rs=AOn4CLBoNutnBt7EgMGTl3UPhC_hw4M1gA&usqp=CCc)
IoK: Istio-on-Kubernetes Deep Dive [I] - Daneyon Hansen, Cisco

Kubernetes Security: Attacking and Defending Modern Infrastructure

Getting Started with Logging in Kubernetes - Eduardo Silva, Treasure Data (Any Skill Level)

Kubernetes Security Best Practices - Ian Lewis (Google)

Cilium Explained: eBPF-Powered Kubernetes Networking

Continuously Deliver your Kubernetes Infrastructure - Mikkel Larsen, Zalando SE

Effective RBAC - Jordan Liggitt, Red Hat

Istio - The Packet's-Eye View - Matt Turner, Tetrate

Kubernetes Zero to Hero: The Complete Beginner’s Guide (2025 Edition)
![Kubernetes Tutorial for Beginners [FULL COURSE in 4 Hours]](https://i.ytimg.com/vi/X48VuDVv0do/hq720.jpg?sqp=-oaymwEbCNAFEJQDSFryq4qpAw0IARUAAIhCGAG4AvcY&rs=AOn4CLDP3EZ0MN2MTrZ5qwVhyDWKfZEiUQ&usqp=CCc)
Kubernetes Tutorial for Beginners [FULL COURSE in 4 Hours]

Secure Pods - Tim Allclair, Google (Advanced Skill Level)

Kubernetes Security Best Practices - Ian Lewis, Google

Understanding Kubernetes Networking in 30 Minutes - Ricardo Katz & James Strong

Kubernetes for SysAdmins | Kelsey Hightower at PuppetConf | Talk & Demo

Cyber Security Full Course 2026 | Complete Cyber Security Course for Beginners | Intellipaat

Practical Istio

Gemini CLI Essentials – Full Course

Creator of C++: Bell Labs, Negative Overhead Abstraction, Mistakes | Bjarne Stroustrup

Kubernetes Storage Lingo 101 - Saad Ali, Google (Beginner Skill Level)

