Repudiation

Let's explore repudiation and non-repudiation in this lesson.

We'll cover the following

How to acheive non-repudiation

At a very high level, repudiation creates doubt about something. Non-repudiation provides proof about something. In the context of information security, non-repudiation is proving certain individuals carried out certain actions.

Digging a little deeper, non-repudiation includes the ability to prove:

What happened
When it happened
Who made it happen
Where it happened
Why it happened
How it happened

Answering the last two can be the hardest and usually requires the correlation of several events over a period of time.

How to acheive non-repudiation

Auditing Kubernetes API server events can help answer these questions. The following is an example of an API server audit event (we may need to enable auditing on our API server).

Get hands-on with 1400+ tech skills courses.

Kubernetes Primer

Kubernetes Principles of Operation

Getting Kubernetes

Working With Pods: Theory

Working with Pods: Hands-On

Virtual Clusters with Namespaces

Kubernetes Deployments

Kubernetes Services: Theory

Kubernetes Services: Hands-On

Ingress

WebAssembly on Kubernetes

Service Discovery Deep Dive

Kubernetes Storage

ConfigMaps

StatefulSets

API Security and RBAC

Kubernetes API

Threat Modeling Kubernetes

Real-World Kubernetes Security

Conclusion

Repudiation

How to acheive non-repudiation