Applying Zero Trust to Kubernetes Clusters

Authors

DOI:

https://doi.org/10.56394/aris2.v5i1.58

Keywords:

Zero Trust, Kubernetes Security, Cloud-Native Infrastructure, Microsegmentation, Policy Automation

Abstract

The growing adoption of Kubernetes as the foundation for cloud-native architectures, has underscored the need for robust and scalable security measures. Traditional security models often fail to address the dynamic and distributed nature of Kubernetes environments, making them vulnerable to threats such as lateral movement, privilege escalation, and misconfigured access controls. This paper explores the application of Zero Trust principles in Kubernetes clusters, synthesizing insights from peer-reviewed and technical studies to evaluate the effectiveness of current tools and practices. The research methodology involved a systematic literature review, identifying key security vulnerabilities, tools for Zero Trust implementation, and their impact on performance, scalability, and manageability. The findings reveal that while Zero Trust significantly enhances security, challenges such as integration, scalability in multi-cloud deployments, and performance trade-offs remain. A roadmap is proposed to address these challenges, integrating tools like Istio, Kyverno, and Falco into a cohesive framework for Zero Trust.

References

Gilman, E., & Barth, D. (2017). Zero Trust Networks: Building Secure Systems in Untrusted Networks. O’Reilly Media.

Rose, S., Borchert, O., Mitchell, S., & Connelly, S. (2020). Zero Trust Architecture (SP 800-207). National Institute of Standards and Technology. DOI: https://doi.org/10.6028/NIST.SP.800-207-draft2

Agarwal, N., Varadharajan, V., & Tupakula, U. (2021). A Survey on Approaches and Tools for Container Security. IEEE Communications Surveys & Tutorials, 23(4), 2206–2230.

VMware. (2021). Adopting Zero Trust in Cloud-Native Applications. https://www.vmware.com/content/dam/digitalmarketing/vmware/en/pdf/products/nsx/vmw-white-paper-nsx-zero-trust.pdf

Downloads

Published

2025-05-16

How to Cite

[1]
R. F. dos Santos, “Applying Zero Trust to Kubernetes Clusters”, ARIS2-Journal, vol. 5, no. 1, pp. 57–71, May 2025.