Presentation
SIGN IN TO VIEW THIS PRESENTATION Sign In
Towards Enabling Hostile Multi-tenancy in Kubernetes
DescriptionKubernetes is the de facto standard for container orchestration but was not designed for hostile multi-tenancy. Native constructs such as namespaces, role-based access control, and admission controllers provide logical separation but lack the strong isolation required in adversarial environments. This paper presents a Kubernetes-compatible architecture that integrates per-tenant virtual control planes, hypervisor-backed sandboxes, and automated policy enforcement to achieve secure multi-tenancy. Each tenant receives a dedicated virtual control plane (via vCluster) linked to a virtual node that schedules workloads into VM-based sandboxes (Azure Container Instances), preserving the Kubernetes API experience. A policy engine (Kyverno) hardens namespaces by enforcing network segmentation, resource limits, and strict security contexts at admission time. Evaluation demonstrates that this approach delivers strong inter-tenant isolation with negligible performance overhead, providing a practical model for zero-trust container orchestration in hostile cloud and edge environments.