CKS Exam Update: What’s New, What’s Removed

The Certified Kubernetes Security Specialist (CKS) exam is about to undergo a major update, with the new version expected to launch no earlier than October 10, 2024.

According to an announcement from the Linux Foundation, a technical issue discovered during beta testing has pushed the estimated release of the updated exam to October 2024. This revamped version of the CKS exam is designed to ensure that Kubernetes professionals stay current with the latest security best practices for containerized applications.

In this blog, we’ll cover the key changes to the exam syllabus, topics that will be removed, how you can best prepare, and the important dates to keep in mind.

If you’re planning to take the exam, you can use the following coupon to get a flat 30 % discount on the CKS exam.

Coupon: Use code TECK30 at checkout

CKS Exam Update 2024: Key Changes and New Release Date

New Exam Release Date: Expected after October 10, 2024
Focus Areas: Security across infrastructure, applications, and workloads

The updated CKS exam will cover refined domains, including cluster setup, hardening, monitoring, and more. Here’s a breakdown of the updates:

New Tools Added

• Cilium: Enhances network security with Pod-to-Pod encryption.
• Software Bill of Materials (SBOM): Improves supply chain security by providing visibility into software components.
• Kubesec & KubeLinter: Perform static analysis on Kubernetes resources and container images to detect vulnerabilities.
• Audit Logs: Monitor access and security events in Kubernetes clusters.

Key Concepts Introduced

• Pod Security Standards (PSS): Emphasizes the use of appropriate security levels for protecting Kubernetes clusters.
• TLS for Ingress: Ensures secure communication for traffic entering the Kubernetes cluster.
• Multi-tenancy & Sandboxed Containers: Focus on isolating workloads for enhanced security.
• Behavioral Analytics: Detects malicious activities through system and network behavior analysis.
• Least-Privilege Identity and Access Management (IAM): Strengthens the use of least-privilege principles for access control.
• Supply Chain Security: New focus on securing CI/CD pipelines, validating artifacts, and signing container images to reduce vulnerabilities in the software supply chain.

These changes highlight the growing importance of pod-level security, network encryption, and supply chain management in Kubernetes environments.

What’s New in the CKS Exam?

The updated CKS exam focuses on aligning with the latest Kubernetes security best practices. While core domains remain the same, competencies within each domain have been refined. Here’s an overview:

1. Cluster Setup:
   • New: Explicit focus on configuring TLS for Ingress objects.
   • Removed: Simplified references to minimizing the use of GUI elements and verifying platform binaries.
   • Why It Matters: The update emphasizes critical configurations like TLS to secure ingress traffic.
2. Cluster Hardening:
   • New: Stronger focus on Kubernetes upgrades to prevent vulnerabilities.
   • Removed: Simplified emphasis on frequent updates, now focusing on critical upgrades.
   • Why It Matters: Upgrades are now prioritized to avoid security loopholes.
3. System Hardening:
   • New: Stronger emphasis on least-privilege IAM and kernel protections like AppArmor and seccomp.
   • Removed: External access minimization references are simplified.
   • Why It Matters: Reducing the host OS attack surface with stricter access policies.
4. Minimizing Microservice Vulnerabilities:
   • New: Implementation of Cilium for Pod-to-Pod encryption and updated pod security standards.
   • Removed: Reduced focus on container runtime sandboxes (gvisor, kata).
   • Why It Matters: Streamlined security standards like Cilium simplify pod encryption.
5. Supply Chain Security:
   • New: Added focus on SBOM and securing artifact repositories.
   • Removed: Whitelisting registries replaced with more flexible artifact validation.
   • Why It Matters: Expands security to cover the entire CI/CD pipeline.
6. Monitoring, Logging, and Runtime Security:
   • New: Enhanced behavioral analytics for detecting threats across infrastructure and workloads.
   • Removed: Some older tools and methods consolidated to prioritize analytics and audit logs.
   • Why It Matters: Greater emphasis on detecting threats ensures broader security coverage.

How to Prepare for the Updated CKS Exam

With these updates, here’s what to focus on in your exam preparation:

• Master Security Tools: Learn tools like Cilium, AppArmor, seccomp, and audit logs to secure Kubernetes environments. These are key for encrypting network traffic and monitoring system calls.
• Upgrade Pod Security Knowledge: Stay updated with Pod Security Standards (PSS) and advanced techniques like multi-tenancy and sandboxed containers to ensure workload isolation and security.
• Strengthen Supply Chain Security: Understand SBOM for securing your CI/CD pipeline, and practice using tools like Kubesec and KubeLinter to perform static analysis on Kubernetes resources and container images.
• Learn Ingress & TLS Configuration: Focus on securing traffic entering your cluster by configuring TLS for Ingress objects, which is now a critical requirement.
• Practice Behavioral Analytics: Hone your skills in detecting malicious activities at the system, network, and application levels using behavioral analytics and Kubernetes audit logs.

CKS Exam Study Guide

If you’re seeking information on CKS certification, CKS exam details, CKS syllabus, or CKS practice exams, you’ve come to the right place. Designed specifically for Kubernetes Security Experts, our guide is tailored to help you excel in the Certified Kubernetes Security Specialist (CKS) Exam.

When Will the Changes Take Effect?

Originally scheduled for September 12, 2024, the release of the updated CKS exam has been delayed due to technical issues. The new exam is expected to go live no earlier than October 10, 2024, giving you additional time to prepare.

Conclusion

With a stronger focus on securing Kubernetes clusters and workloads, the updated CKS exam reflects the latest security trends. From pod security standards to supply chain protection, the new content ensures that Kubernetes professionals stay ahead of modern infrastructure challenges.

Also, be sure to check out the update for the CKA exam, which is being refreshed as well. For the latest promo codes on Linux Foundation certifications, visit the Kubernetes certification coupons page.