{"id":6063,"date":"2019-09-11T09:43:11","date_gmt":"2019-09-11T02:43:11","guid":{"rendered":"http:\/\/gcloudvn.wam.vn\/kiem-toan-bao-mat-cho-kubernetes-nhung-gi-ma-nguoi-dung-gke-va-anthos-can-phai-biet\/"},"modified":"2024-05-24T13:28:34","modified_gmt":"2024-05-24T06:28:34","slug":"kiem-toan-bao-mat-cho-kubernetes-nhung-gi-ma-nguoi-dung-gke-va-anthos-can-phai-biet","status":"publish","type":"post","link":"https:\/\/gcloudvn.com\/en\/kienthuc\/kiem-toan-bao-mat-cho-kubernetes-nhung-gi-ma-nguoi-dung-gke-va-anthos-can-phai-biet\/","title":{"rendered":"Security Audit for Kubernetes: What GKE and Anthos Users Need to Know"},"content":{"rendered":"<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">Kubernetes v\u1eeba \u0111\u1ea1t \u0111\u01b0\u1ee3c m\u1ed9t c\u1ed9t m\u1ed1c quan tr\u1ecdng g\u1ea7n \u0111\u00e2y: \u0111\u00f3 l\u00e0 c\u00f4ng b\u1ed1 vi\u1ec7c ki\u1ec3m to\u00e1n b\u1ea3o m\u1eadt \u0111\u1ea7u ti\u00ean! \u0110\u01b0\u1ee3c t\u00e0i tr\u1ee3 b\u1edfi T\u1ed5 ch\u1ee9c \u0110i\u1ec7n to\u00e1n \u0111\u00e1m m\u00e2y (CNCF),\u00a0 vi\u1ec7c ki\u1ec3m tra b\u1ea3o m\u1eadt n\u00e0y c\u1ee7ng c\u1ed1 nh\u1eefng g\u00ec m\u00e0 ch\u00fang ta \u0111\u00e3 th\u1ea5y b\u00e2y gi\u1edd: Kubernetes l\u00e0 m\u1ed9t d\u1ef1 \u00e1n ngu\u1ed3n m\u1edf ho\u00e0n thi\u1ec7n v\u00e0 cho c\u00e1c t\u1ed5 ch\u1ee9c s\u1eed d\u1ee5ng l\u00e0m n\u1ec1n t\u1ea3ng c\u01a1 s\u1edf h\u1ea1 t\u1ea7ng c\u1ee7a h\u1ecd.<\/span><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">M\u1eb7c d\u00f9 m\u1ecdi cu\u1ed9c ki\u1ec3m to\u00e1n s\u1ebd ph\u00e1t hi\u1ec7n ra \u0111i\u1ec1u g\u00ec \u0111\u00f3, nh\u01b0ng b\u00e1o c\u00e1o n\u00e0y ch\u1ec9 t\u00ecm th\u1ea5y m\u1ed9t s\u1ed1 l\u01b0\u1ee3ng nh\u1ecf c\u00e1c l\u1ed7 h\u1ed5ng \u0111\u00e1ng k\u1ec3 c\u1ea7n \u0111\u01b0\u1ee3c gi\u1ea3i quy\u1ebft. &#8220;M\u1eb7c d\u00f9 c\u00f3 nhi\u1ec1u ph\u00e1t hi\u1ec7n quan tr\u1ecdng, ch\u00fang t\u00f4i kh\u00f4ng th\u1ea5y c\u00e1c l\u1ed7i thi\u1ebft k\u1ebf ki\u1ebfn tr\u00fac c\u01a1 b\u1ea3n ho\u1eb7c c\u00e1c l\u1ed7 h\u1ed5ng nghi\u00eam tr\u1ecdng s\u1ebd g\u00e2y ra t\u1ea1m d\u1eebng khi \u00e1p d\u1ee5ng Kubernetes cho kh\u1ed1i l\u01b0\u1ee3ng c\u00f4ng vi\u1ec7c b\u1ea3o m\u1eadt cao ho\u1eb7c c\u00e1c ch\u1ee9c n\u0103ng kinh doanh quan tr\u1ecdng&#8221; <\/span><span style=\"color: #0000ff;\"><span style=\"font-weight: 400;\">theo \u00f4ng Aaron Small<\/span><\/span><span style=\"font-weight: 400;\">, Gi\u00e1m \u0111\u1ed1c s\u1ea3n ph\u1ea9m, <a href=\"https:\/\/gcloudvn.com\/en\/google-cloud-platform\/\">Google Cloud<\/a> v\u00e0 th\u00e0nh vi\u00ean c\u1ee7a B\u1ea3o m\u1eadt T\u1ed5 c\u00f4ng t\u00e1c ki\u1ec3m to\u00e1n. H\u01a1n n\u1eefa, Kubernetes c\u00f3 <\/span><span style=\"color: #0000ff;\"><span style=\"font-weight: 400;\">m\u1ed9t quy tr\u00ecnh b\u00e1o c\u00e1o, ph\u1ea3n h\u1ed3i v\u00e0 ti\u1ebft l\u1ed9 l\u1ed7 h\u1ed5ng \u0111\u00e3 \u0111\u01b0\u1ee3c thi\u1ebft l\u1eadp<\/span><\/span><span style=\"font-weight: 400;\">, \u0111\u01b0\u1ee3c b\u1ed1 tr\u00ed v\u1edbi c\u00e1c nh\u00e0 ph\u00e1t tri\u1ec3n c\u1ea5p cao, nh\u1eefng ng\u01b0\u1eddi c\u00f3 th\u1ec3 ti\u1ebfp nh\u1eadn v\u00e0 x\u1eed l\u00fd c\u00e1c v\u1ea5n \u0111\u1ec1.<\/span><\/p>\n<p style=\"text-align: justify;\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter wp-image-14762 size-full\" src=\"https:\/\/gcloudvn.com\/wp-content\/uploads\/2019\/09\/pasted-image-0-12.png\" alt=\"Ki\u1ec3m to\u00e1n b\u1ea3o m\u1eadt cho Kubernetes: Nh\u1eefng g\u00ec m\u00e0 ng\u01b0\u1eddi d\u00f9ng GKE v\u00e0 Anthos c\u1ea7n ph\u1ea3i bi\u1ebft 1\" width=\"1000\" height=\"269\" \/><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">Vi\u1ec7c th\u1ef1c hi\u1ec7n ki\u1ec3m to\u00e1n b\u1ea3o m\u1eadt n\u00e0y l\u00e0 m\u1ed9t n\u1ed7 l\u1ef1c l\u1edbn thay m\u1eb7t cho CNCF, c\u00f3 nhi\u1ec7m v\u1ee5 c\u1ea3i thi\u1ec7n t\u00ednh b\u1ea3o m\u1eadt c\u1ee7a c\u00e1c d\u1ef1 \u00e1n th\u00f4ng qua ch\u01b0\u01a1ng tr\u00ecnh <\/span><span style=\"font-weight: 400;\">Best Practices Badge Program<\/span><span style=\"font-weight: 400;\">. \u0110\u1ec3 \u0111\u01b0a Kubernetes qua ki\u1ec3m to\u00e1n b\u1ea3o m\u1eadt \u0111\u1ea7u ti\u00ean n\u00e0y, ban ch\u1ec9 \u0111\u1ea1o Kubernetes \u0111\u00e3 th\u00e0nh l\u1eadp m\u1ed9t nh\u00f3m l\u00e0m vi\u1ec7c, ph\u00e1t tri\u1ec3n RFP, l\u00e0m vi\u1ec7c v\u1edbi c\u00e1c nh\u00e0 cung c\u1ea5p, xem x\u00e9t v\u00e0 cu\u1ed1i c\u00f9ng l\u00e0 xu\u1ea5t b\u1ea3n b\u00e1o c\u00e1o. B\u1ea1n c\u00f3 th\u1ec3 n\u1eafm trong tay <\/span><a href=\"https:\/\/github.com\/kubernetes\/community\/blob\/master\/wg-security-audit\/findings\/Kubernetes%20Final%20Report.pdf\" target=\"_blank\" rel=\"nofollow noopener\"><span style=\"font-weight: 400;\">b\u1ea3n b\u00e1o c\u00e1o \u0111\u1ea7y \u0111\u1ee7<\/span><\/a><span style=\"font-weight: 400;\"> tr\u00ean trang Nh\u00f3m GitHub c\u1ee7a Nh\u00f3m l\u00e0m vi\u1ec7c ho\u1eb7c \u0111\u1ecdc <\/span><a href=\"https:\/\/www.cncf.io\/blog\/2019\/08\/06\/open-sourcing-the-kubernetes-security-audit\/\" target=\"_blank\" rel=\"nofollow noopener\"><span style=\"font-weight: 400;\">nh\u1eefng \u0111i\u1ec3m n\u1ed5i b\u1eadt trong b\u00e0i \u0111\u0103ng tr\u00ean blog c\u1ee7a CNCF<\/span><\/a><span style=\"font-weight: 400;\">.<\/span><\/p>\n<h3 style=\"text-align: justify;\"><b>B\u1ea3o m\u1eadt Kubernetes cho ng\u01b0\u1eddi d\u00f9ng GKE v\u00e0 Anthos<\/b><\/h3>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">K\u1ebft th\u00fac v\u1edbi 241 trang, b\u00e1o c\u00e1o cu\u1ed1i c\u00f9ng r\u1ea5t k\u1ef9 l\u01b0\u1ee1ng v\u00e0 th\u00fa v\u1ecb v\u00e0 ch\u00fang t\u00f4i khuy\u1ebfn kh\u00edch b\u1ea1n \u0111\u1ecdc n\u00f3. Nh\u01b0ng \u0111i\u1ec1u g\u00ec s\u1ebd x\u1ea3y ra n\u1ebfu b\u1ea1n ch\u1ec9 quan t\u00e2m \u0111\u1ebfn \u00fd ngh\u0129a c\u1ee7a b\u00e1o c\u00e1o n\u00e0y \u0111\u1ed1i v\u1edbi c\u00e1c n\u1ec1n t\u1ea3ng \u0111\u01b0\u1ee3c qu\u1ea3n l\u00fd c\u1ee7a Google Cloud, <\/span><span style=\"color: #0000ff;\"><a style=\"color: #0000ff;\" href=\"https:\/\/gcloudvn.com\/en\/google-kubernetes-engine-gke\/\"><span style=\"font-weight: 400;\">Google Kubernetes Engine<\/span><\/a> <\/span><span style=\"font-weight: 400;\">(GKE) v\u00e0 <\/span><a href=\"https:\/\/gcloudvn.com\/en\/kienthuc\/anthos-la-gi-the-manh-cua-anthos-la-gi\/\"><span style=\"font-weight: 400;\">Google Anthos<\/span><\/a><span style=\"font-weight: 400;\">? N\u1ebfu b\u1ea1n kh\u00f4ng \u0111\u1ecdc to\u00e0n b\u1ed9 n\u1ed9i dung, th\u00ec \u0111\u00e2y l\u00e0 n\u1ed9i dung ch\u00ednh c\u1ee7a b\u00e1o c\u00e1o v\u00e0 c\u00e1c b\u1ea3n t\u00f3m t\u1eaft d\u00e0nh cho kh\u00e1ch h\u00e0ng c\u1ee7a Google Cloud.<\/span><\/p>\n<ul style=\"text-align: justify;\">\n<li><b>GKE gi\u00fap b\u1ea1n d\u1ec5 d\u00e0ng theo d\u00f5i c\u00e1c c\u1ea5u h\u00ecnh \u0111\u01b0\u1ee3c \u0111\u1ec1 xu\u1ea5t<\/b><\/li>\n<\/ul>\n<p style=\"padding-left: 40px; text-align: justify;\"><span style=\"font-weight: 400;\">B\u00e1o c\u00e1o s\u1ebd \u0111\u01b0a ra <\/span><span style=\"color: #0000ff;\"><a style=\"color: #0000ff;\" href=\"https:\/\/github.com\/kubernetes\/community\/blob\/master\/wg-security-audit\/findings\/Kubernetes%20White%20Paper.pdf\" target=\"_blank\" rel=\"nofollow noopener\"><span style=\"font-weight: 400;\">danh s\u00e1ch c\u00e1c h\u00e0nh \u0111\u1ed9ng \u0111\u01b0\u1ee3c \u0111\u1ec1 xu\u1ea5t cho qu\u1ea3n tr\u1ecb vi\u00ean c\u1ee5m<\/span><\/a><\/span><span style=\"font-weight: 400;\">, bao g\u1ed3m s\u1eed d\u1ee5ng RBAC, \u00e1p d\u1ee5ng Ch\u00ednh s\u00e1ch m\u1ea1ng v\u00e0 gi\u1edbi h\u1ea1n quy\u1ec1n truy c\u1eadp v\u00e0o nh\u1eadt k\u00fd n\u01a1i m\u00e0 c\u00f3 th\u1ec3 ch\u1ee9a th\u00f4ng tin nh\u1ea1y c\u1ea3m. B\u00e1o c\u00e1o c\u0169ng g\u1ecdi ra c\u00e1c thi\u1ebft l\u1eadp m\u1eb7c \u0111\u1ecbnh c\u1ee7a Kubernetes. Trong GKE, ch\u00fang t\u00f4i \u0111\u00e3 t\u00edch c\u1ef1c thay \u0111\u1ed5i nh\u1eefng \u0111i\u1ec1u n\u00e0y theo th\u1eddi gian, bao g\u1ed3m t\u1eaft ABAC v\u00e0 x\u00e1c th\u1ef1c c\u01a1 b\u1ea3n theo m\u1eb7c \u0111\u1ecbnh, \u0111\u1ec3 \u0111\u1ea3m b\u1ea3o c\u00e1c c\u1ee5m m\u1edbi m\u00e0 b\u1ea1n t\u1ea1o s\u1ebd an to\u00e0n h\u01a1n. \u0110\u1ec3 \u00e1p d\u1ee5ng c\u00e1c c\u1ea5u h\u00ecnh \u0111\u01b0\u1ee3c \u0111\u1ec1 xu\u1ea5t trong GKE v\u00e0 xem c\u1ea5u h\u00ecnh n\u00e0o \u0111\u00e3 \u0111\u01b0\u1ee3c \u00e1p d\u1ee5ng cho b\u1ea1n, h\u00e3y xem <\/span><a href=\"https:\/\/cloud.google.com\/kubernetes-engine\/docs\/how-to\/hardening-your-cluster\" target=\"_blank\" rel=\"nofollow noopener\"><span style=\"font-weight: 400;\"><span style=\"color: #0000ff;\">h\u01b0\u1edbng d\u1eabn t\u0103ng c\u01b0\u1eddng cho GKE<\/span>.<\/span><\/a><\/p>\n<ul style=\"text-align: justify;\">\n<li><b>N\u00f3 kh\u00f4ng ph\u1ea3i l\u00e0 t\u1ea5t c\u1ea3 t\u00f9y thu\u1ed9c v\u00e0o b\u1ea1n<\/b><\/li>\n<\/ul>\n<p style=\"padding-left: 40px; text-align: justify;\"><a href=\"https:\/\/github.com\/kubernetes\/community\/blob\/master\/wg-security-audit\/findings\/Kubernetes%20Threat%20Model.pdf\" target=\"_blank\" rel=\"nofollow noopener\"><span style=\"font-weight: 400;\"><span style=\"color: #0000ff;\">M\u00f4 h\u00ecnh m\u1ed1i \u0111e d\u1ecda<\/span><\/span><\/a><span style=\"font-weight: 400;\"> \u0111\u00e3 \u0111\u00e1nh gi\u00e1 c\u00e1ch th\u1ee9c b\u1ea3o m\u1eadt c\u1ee7a t\u00e1m th\u00e0nh ph\u1ea7n ch\u00ednh, nh\u01b0ng nh\u1edd <\/span><span style=\"color: #0000ff;\"><a style=\"color: #0000ff;\" href=\"https:\/\/cloud.google.com\/blog\/products\/containers-kubernetes\/exploring-container-security-the-shared-responsibility-model-in-gke-container-security-shared-responsibility-model-gke\" target=\"_blank\" rel=\"nofollow noopener\"><span style=\"font-weight: 400;\">m\u00f4 h\u00ecnh tr\u00e1ch nhi\u1ec7m chung c\u1ee7a GKE<\/span><\/a><\/span><span style=\"font-weight: 400;\">, b\u1ea1n kh\u00f4ng ph\u1ea3i lo l\u1eafng v\u1ec1 t\u1ea5t c\u1ea3 ch\u00fang. GKE ch\u1ecbu tr\u00e1ch nhi\u1ec7m cung c\u1ea5p c\u00e1c b\u1ea3n c\u1eadp nh\u1eadt cho c\u00e1c l\u1ed7 h\u1ed5ng cho t\u00e1m th\u00e0nh ph\u1ea7n \u0111\u01b0\u1ee3c li\u1ec7t k\u00ea trong b\u00e1o c\u00e1o, trong khi b\u1ea1n v\u1edbi t\u01b0 c\u00e1ch l\u00e0 ng\u01b0\u1eddi d\u00f9ng ch\u1ecbu tr\u00e1ch nhi\u1ec7m n\u00e2ng c\u1ea5p c\u00e1c node v\u00e0 c\u1ea5u h\u00ecnh li\u00ean quan \u0111\u1ebfn kh\u1ed1i l\u01b0\u1ee3ng c\u00f4ng vi\u1ec7c. B\u1ea1n kh\u00f4ng c\u1ea7n n\u00e2ng c\u1ea5p c\u00e1c node n\u1ebfu b\u1ea1n b\u1eadt ch\u1ebf \u0111\u1ed9 t\u1ef1 \u0111\u1ed9ng n\u00e2ng c\u1ea5p node.<\/span><\/p>\n<ul style=\"text-align: justify;\">\n<li><b>Kubernetes v\u00e0 b\u1ea3o m\u1eadt GKE s\u1ebd ti\u1ebfp t\u1ee5c t\u1ed1t h\u01a1n<\/b><\/li>\n<\/ul>\n<p style=\"padding-left: 40px; text-align: justify;\"><span style=\"font-weight: 400;\">V\u1edbi vi\u1ec7c c\u00e0ng nhi\u1ec1u ng\u01b0\u1eddi d\u00f9ng c\u00f9ng xem x\u00e9t v\u1ec1 c\u00f4ng ngh\u1ec7 m\u00e3 ngu\u1ed3n m\u1edf \u0111\u01b0\u1ee3c chia s\u1ebb n\u00e0y, nhi\u1ec1u l\u1ed7i \u0111\u01b0\u1ee3c \u1ea9n gi\u1ea5u t\u1ed1t h\u01a1n c\u00f3 th\u1ec3 s\u1ebd \u0111\u01b0\u1ee3c t\u00ecm th\u1ea5y v\u00e0 kh\u1eafc ph\u1ee5c. C\u1ed9ng \u0111\u1ed3ng Kubernetes d\u00e0nh th\u1eddi gian v\u00e0 ngu\u1ed3n l\u1ef1c \u0111\u00e1ng k\u1ec3 cho cu\u1ed9c ki\u1ec3m to\u00e1n n\u00e0y, nh\u1ea5n m\u1ea1nh r\u1eb1ng b\u1ea3o m\u1eadt th\u1ef1c s\u1ef1 l\u00e0 \u01b0u ti\u00ean h\u00e0ng \u0111\u1ea7u. V\u1edbi c\u00e1c cu\u1ed9c ki\u1ec3m to\u00e1n m\u1edf nh\u01b0 cu\u1ed9c ki\u1ec3m tra do CNCF th\u1ef1c hi\u1ec7n, c\u00e1c nh\u00e0 nghi\u00ean c\u1ee9u &#8211; ho\u1eb7c c\u00e1c nh\u00f3m d\u1ec5 d\u00e0ng hi\u1ec3u \u0111\u01b0\u1ee3c c\u00e1c m\u1ed1i \u0111e d\u1ecda th\u1ef1c s\u1ef1 v\u00e0 d\u00e0nh th\u1eddi gian nghi\u00ean c\u1ee9u ho\u1eb7c kh\u1eafc ph\u1ee5c c\u00e1c v\u1ea5n \u0111\u1ec1 ph\u1ee9c t\u1ea1p nh\u1ea5t.<\/span><\/p>\n<p style=\"padding-left: 40px; text-align: justify;\"><span style=\"font-weight: 400;\">V\u00e0 khi c\u00e1c v\u1ea5n \u0111\u1ec1 ph\u00e1t sinh, nh\u01b0 ch\u00fang ta \u0111\u00e3 th\u1ea5y nhi\u1ec1u l\u1ea7n v\u1edbi c\u00e1c l\u1ed7 h\u1ed5ng g\u1ea7n \u0111\u00e2y, <\/span><span style=\"color: #0000ff;\"><span style=\"font-weight: 400;\">\u1ee6y ban b\u1ea3o m\u1eadt s\u1ea3n ph\u1ea9m Kubernetes<\/span><\/span><span style=\"font-weight: 400;\"> \u0111\u00e3 \u0111\u1ea9y l\u00ean m\u1ee9c \u0111\u1ed9 \u01b0u ti\u00ean cao nh\u1ea5t, nhanh ch\u00f3ng ph\u1ea3n h\u1ed3i v\u00e0 cung c\u1ea5p c\u00e1c b\u1ea3n s\u1eeda l\u1ed7i cho c\u1ed9ng \u0111\u1ed3ng.<\/span><\/p>\n<p style=\"padding-left: 40px; text-align: justify;\"><span style=\"font-weight: 400;\">Cu\u1ed1i c\u00f9ng, v\u00ec GKE l\u00e0 m\u1ed9t b\u1ea3n ph\u00e2n ph\u1ed1i ch\u00ednh th\u1ee9c, ch\u00fang t\u00f4i ch\u1ecdn c\u00e1c b\u1ea3n v\u00e1 khi ch\u00fang c\u00f3 s\u1eb5n trong Kubernetes v\u00e0 l\u00e0m cho ch\u00fang c\u00f3 s\u1eb5n t\u1ef1 \u0111\u1ed9ng cho lu\u1ed3ng \u0111i\u1ec1u khi\u1ec3n, master v\u00e0 node. C\u00e1c Master \u0111\u01b0\u1ee3c t\u1ef1 \u0111\u1ed9ng n\u00e2ng c\u1ea5p v\u00e0 v\u00e1 l\u1ed7i v\u00e0 n\u1ebfu b\u1ea1n k\u00edch ho\u1ea1t t\u1ef1 \u0111\u1ed9ng n\u00e2ng c\u1ea5p node, c\u00e1c b\u1ea3n v\u00e1 node c\u1ee7a b\u1ea1n c\u0169ng s\u1ebd \u0111\u01b0\u1ee3c t\u1ef1 \u0111\u1ed9ng \u00e1p d\u1ee5ng. B\u1ea1n c\u00f3 th\u1ec3 theo d\u00f5i ti\u1ebfn tr\u00ecnh \u0111\u1ec3 gi\u1ea3i quy\u1ebft c\u00e1c l\u1ed7 h\u1ed5ng \u0111\u01b0\u1ee3c ph\u00e1t hi\u1ec7n b\u1edfi b\u00e1o c\u00e1o n\u00e0y trong <\/span><span style=\"color: #0000ff;\"><a style=\"color: #0000ff;\" href=\"https:\/\/github.com\/kubernetes\/kubernetes\/issues\/81146\" target=\"_blank\" rel=\"nofollow noopener\"><span style=\"font-weight: 400;\">b\u1ea3ng \u0111i\u1ec1u khi\u1ec3n v\u1ea5n \u0111\u1ec1<\/span><\/a><span style=\"font-weight: 400;\">.<\/span><\/span><\/p>\n<p style=\"padding-left: 40px; text-align: justify;\"><span style=\"font-weight: 400;\">N\u1ebfu b\u1ea1n mu\u1ed1n t\u00ecm hi\u1ec3u s\u00e2u h\u01a1n, h\u00e3y xem <\/span><span style=\"color: #0000ff;\"><a style=\"color: #0000ff;\" href=\"https:\/\/github.com\/kubernetes\/community\/blob\/master\/wg-security-audit\/findings\/Kubernetes%20Final%20Report.pdf\" target=\"_blank\" rel=\"nofollow noopener\"><span style=\"font-weight: 400;\">b\u00e1o c\u00e1o \u0111\u1ea7y \u0111\u1ee7<\/span><\/a><\/span><span style=\"font-weight: 400;\">, c\u00f3 s\u1eb5n tr\u00ean GitHub. M\u1ed9t l\u1ea7n n\u1eefa xin c\u1ea3m \u01a1n Nh\u00f3m l\u00e0m vi\u1ec7c ki\u1ec3m to\u00e1n b\u1ea3o m\u1eadt Kubernetes, CNCF, Trail of Bits v\u00e0 Atredis Partners v\u00ec c\u00f4ng vi\u1ec7c tuy\u1ec7t v\u1eddi m\u00e0 h\u1ecd \u0111\u00e3 l\u00e0m \u0111\u1ec3 ho\u00e0n th\u00e0nh \u0111\u00e1nh gi\u00e1 chuy\u00ean s\u00e2u n\u00e0y! \u0110\u1ec3 t\u00ecm hi\u1ec3u th\u00eam v\u1ec1 c\u00e1c xu h\u01b0\u1edbng trong b\u1ea3o m\u1eadt container t\u1ea1i Google Cloud, h\u00e3y nh\u1edb theo d\u00f5i lo\u1ea1t blog <\/span><span style=\"color: #0000ff;\"><span style=\"font-weight: 400;\">&#8220;Kh\u00e1m ph\u00e1 b\u1ea3o m\u1eadt container&#8221;<\/span><\/span><span style=\"font-weight: 400;\"> c\u1ee7a ch\u00fang t\u00f4i.<\/span><\/p>\n<p style=\"text-align: right;\"><strong>Source: Gimasys<\/strong><\/p>\n<div id=\"gtx-trans\" style=\"position: absolute; left: -44px; top: 0.666668px;\">\n<div class=\"gtx-trans-icon\" style=\"text-align: justify;\"><\/div>\n<\/div>","protected":false},"excerpt":{"rendered":"<p>Kubernetes v\u1eeba \u0111\u1ea1t \u0111\u01b0\u1ee3c m\u1ed9t c\u1ed9t m\u1ed1c quan tr\u1ecdng g\u1ea7n \u0111\u00e2y: \u0111\u00f3 l\u00e0 c\u00f4ng b\u1ed1 vi\u1ec7c ki\u1ec3m to\u00e1n b\u1ea3o m\u1eadt \u0111\u1ea7u ti\u00ean! \u0110\u01b0\u1ee3c t\u00e0i tr\u1ee3 b\u1edfi T\u1ed5 ch\u1ee9c \u0110i\u1ec7n to\u00e1n \u0111\u00e1m m\u00e2y (CNCF),\u00a0 vi\u1ec7c ki\u1ec3m tra b\u1ea3o m\u1eadt n\u00e0y c\u1ee7ng&hellip;<\/p>","protected":false},"author":1,"featured_media":6064,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"inline_featured_image":false,"footnotes":""},"categories":[1,135],"tags":[],"class_list":["post-6063","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-kienthuc","category-google-cloud-platform","entry","has-media"],"_links":{"self":[{"href":"https:\/\/gcloudvn.com\/en\/wp-json\/wp\/v2\/posts\/6063","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/gcloudvn.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/gcloudvn.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/gcloudvn.com\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/gcloudvn.com\/en\/wp-json\/wp\/v2\/comments?post=6063"}],"version-history":[{"count":0,"href":"https:\/\/gcloudvn.com\/en\/wp-json\/wp\/v2\/posts\/6063\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/gcloudvn.com\/en\/wp-json\/wp\/v2\/media\/6064"}],"wp:attachment":[{"href":"https:\/\/gcloudvn.com\/en\/wp-json\/wp\/v2\/media?parent=6063"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/gcloudvn.com\/en\/wp-json\/wp\/v2\/categories?post=6063"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/gcloudvn.com\/en\/wp-json\/wp\/v2\/tags?post=6063"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}