**Help improve this page** 

To contribute to this user guide, choose the **Edit this page on GitHub** link that is located in the right pane of every page.

# Security considerations for Kubernetes
<a name="security-k8s"></a>

The following are considerations for security in the cloud, as they affect Kubernetes in Amazon EKS clusters. For an in-depth review of security controls and practices in Kubernetes, see [Cloud Native Security and Kubernetes](https://kubernetes.io/docs/concepts/security/cloud-native-security/) in the Kubernetes documentation.

**Topics**
+ [Secure workloads with Kubernetes certificates](cert-signing.md)
+ [Understand Amazon EKS created RBAC roles and users](default-roles-users.md)
+ [Encrypt Kubernetes secrets with KMS on existing clusters](enable-kms.md)
+ [Use Amazon Secrets Manager secrets with Amazon EKS Pods](manage-secrets.md)
+ [Default envelope encryption for all Kubernetes API Data](envelope-encryption.md)
+ [Harden Kubernetes RBAC in Amazon EKS](rbac-hardening.md)