Applying Zero Trust to Kubernetes Clusters
DOI:
https://doi.org/10.56394/aris2.v5i1.58Keywords:
Zero Trust, Kubernetes Security, Cloud-Native Infrastructure, Microsegmentation, Policy AutomationAbstract
The growing adoption of Kubernetes as the foundation for cloud-native architectures, has underscored the need for robust and scalable security measures. Traditional security models often fail to address the dynamic and distributed nature of Kubernetes environments, making them vulnerable to threats such as lateral movement, privilege escalation, and misconfigured access controls. This paper explores the application of Zero Trust principles in Kubernetes clusters, synthesizing insights from peer-reviewed and technical studies to evaluate the effectiveness of current tools and practices. The research methodology involved a systematic literature review, identifying key security vulnerabilities, tools for Zero Trust implementation, and their impact on performance, scalability, and manageability. The findings reveal that while Zero Trust significantly enhances security, challenges such as integration, scalability in multi-cloud deployments, and performance trade-offs remain. A roadmap is proposed to address these challenges, integrating tools like Istio, Kyverno, and Falco into a cohesive framework for Zero Trust.
References
Gilman, E., & Barth, D. (2017). Zero Trust Networks: Building Secure Systems in Untrusted Networks. O’Reilly Media.
Rose, S., Borchert, O., Mitchell, S., & Connelly, S. (2020). Zero Trust Architecture (SP 800-207). National Institute of Standards and Technology. DOI: https://doi.org/10.6028/NIST.SP.800-207-draft2
Agarwal, N., Varadharajan, V., & Tupakula, U. (2021). A Survey on Approaches and Tools for Container Security. IEEE Communications Surveys & Tutorials, 23(4), 2206–2230.
VMware. (2021). Adopting Zero Trust in Cloud-Native Applications. https://www.vmware.com/content/dam/digitalmarketing/vmware/en/pdf/products/nsx/vmw-white-paper-nsx-zero-trust.pdf
Downloads
Published
How to Cite
Issue
Section
License
Copyright (c) 2025 Rui Filipe dos Santos

This work is licensed under a Creative Commons Attribution-NonCommercial-NoDerivatives 4.0 International License.