AAA

Jan 1, 0001

Definition

AAA stands for Authentication, Authorization, and Accounting. It is a framework used to control access to computer resources, enforce policies, and audit usage. Authentication verifies the identity of a user or system, Authorization determines what an authenticated user or system can do, and Accounting tracks the consumption of resources by users or systems.

Secure Settings Example

# Example of a secure AAA configuration in a Kubernetes environment
apiVersion: v1
kind: Pod
metadata:
  name: secure-app
spec:
  securityContext:
    runAsNonRoot: true
    readOnlyRootFilesystem: true
  containers:
  - name: app-container
    image: secure-app-image:latest
    ports:
    - containerPort: 80
    resources:
      limits:
        memory: "128Mi"
        cpu: "500m"
    securityContext:
      allowPrivilegeEscalation: false
      capabilities:
        drop:
        - ALL

Insecure Settings Example

# Example of an insecure AAA configuration in a Kubernetes environment
apiVersion: v1
kind: Pod
metadata:
  name: insecure-app
spec:
  securityContext:
    runAsNonRoot: false
  containers:
  - name: app-container
    image: insecure-app-image:latest
    ports:
    - containerPort: 80
    securityContext:
      allowPrivilegeEscalation: true
      capabilities:
        add:
        - NET_ADMIN

AAA

Definition

Secure Settings Example

Insecure Settings Example

Ask AppSec: free security newsletter

Ask AppSec: free security newsletter