Container security
- Enable policy governance
- Enable Validating Admission Policy as a security engine
- Container Service for Kubernetes:Container Security Policy Rule Library Overview
- Inspect cluster workloads
- Use security monitoring
- Encrypt secrets at rest with Alibaba Cloud KMS
- Import Alibaba Cloud KMS secrets for applications
- Import the encryption parameters of OOS to an application
- Integrate ACK with an external LDAP authentication source
- Use Vault as a KMS service
- Use a Keycloak OIDC provider for authentication
- Notation and Ratify: Sign and verify OCI artifacts
- Use Kyverno for policy governance