Oracle > OKE >

OKE Secrets Encrypted

MEDIUM

Source

CloudSploit

oke-secrets-encrypted

management console

OKE Secrets Encrypted

Ensures the OKE secret objects have encryption enabled using desired protection level.

By default, Kubernetes secret objects are encrypted using an Oracle-managed master encryption key. To have better control over the encryption process, you can use Customer-Managed Keys (CMKs).

Recommended Actions

Ensure all OKE clusters have desired encryption level for secret objects.

Links

https://docs.oracle.com/en-us/iaas/Content/ContEng/Tasks/contengencryptingdata.htm

Aqua Container Security

Aqua Security is the largest pure-play cloud native security company, providing customers the freedom to innovate and run their businesses with minimal friction. The Aqua Cloud Native Security Platform provides prevention, detection, and response automation across the entire application lifecycle to secure the build, secure cloud infrastructure and secure running workloads wherever they are deployed.