To get the most out of this book
Before starting with this book, it is expected that you have a preliminary understanding of cloud-native technologies such as Kubernetes and Terraform. This book was written to explain security solutions possible using the following cloud-native tools, and so it is expected that you should adopt a security mindset when learning about the tools or using them. This book has a lot of examples and references for you to follow and implement; it is expected that you don’t use the code, as provided, verbatim, as each environment is different. Instead, approach each chapter carefully, and apply your learnings in your own environment. I hope that you spend more time learning about the tool itself, as that provides a holistic understanding of what this book aims to achieve – cloud-native security.
Software/hardware covered in the book |
Operating system requirements |
Kubernetes v 1.27 |
macOS or Linux |
Helm v3.12.0 |
macOS or Linux |
Open Policy Agent v 0.52.0 |
macOS or Linux |
Harbor v 2.7.0 |
macOS or Linux |
Clair v 4.6.0 |
macOS or Linux |
K9s v 0.27.2 |
macOS or Linux |
Vault v 1.13.2 |
macOS or Linux |
OWASP ASVS v 4.0 |
macOS or Linux |
Calico v 3.25 |
macOS or Linux |
Falco |
macOS or Linux |
OPA – Gatekeeper v 3.10 |
macOS or Linux |
Elasticsearch v 7.13.0 |
macOS or Linux |
Fluentd v 1.15.1 |
macOS or Linux |
Kibana v 8.7.0 |
macOS or Linux |
Prometheus v 2.44.0 |
macOS or Linux |
Terraform v 1.4.6 |
macOS or Linux |
Checkov v 2.3.245 |
macOS or Linux |
For certain tools, where the installation guide is a little complex, steps and tutorials are included within each chapter; however, you are strongly advised to follow the official documentation to install the tools as listed in the preceding table before trying the hands-on tutorials.
If you are using the digital version of this book, we advise you to type the code yourself or access the code from the book’s GitHub repository (a link is available in the next section). Doing so will help you avoid any potential errors related to the copying and pasting of code.