A Zero Trust Reference Architecture for Production-Ready Amazon EKS Environments
Author(s): Praveen Chaitanya Jakku
Publication #: 2605004
Date of Publication: 11.03.2022
Country: United States
Pages: 1-9
Published In: Volume 8 Issue 2 March-2022
DOI: https://doi.org/10.62970/IJIRCT.v8.i2.2605004
Abstract
Amazon Elastic Kubernetes Service has become a practical foundation for running production microservices, but production readiness requires more than cluster availability, autoscaling, and faster deployments. As Kubernetes platforms become more connected to cloud services, CI/CD systems, container registries, secrets stores, and internal business applications, the security model must move away from implicit trust. A Zero Trust approach is well suited for Amazon EKS because it treats every user, workload, network path, and deployment action as something that must be verified, authorized, and continuously observed. This article presents a practical Zero Trust reference architecture for production-ready Amazon EKS environments. The architecture focuses on identity-based access, least privilege, workload isolation, network segmentation, secrets management, secure delivery pipelines, admission control, and continuous visibility. The goal is not to describe Zero Trust as a single product, but to show how AWS-native services, Kubernetes controls, and disciplined DevOps practices can work together to create a secure and reliable production platform.
Keywords: Zero Trust Architecture; Amazon EKS; Kubernetes Security; Cloud-Native Security; Workload Identity; IAM Roles for Service Accounts; Least Privilege Access; Network Segmentation; Kubernetes RBAC; Secrets Management; Secure CI/CD; Admission Control; Container Security; Runtime Monitoring; DevSecOps.
Download/View Count: 3
Share this Article