The Linux Foundation KCSA exam preparation guide is designed to provide candidates with necessary information about the Kubernetes and Cloud Native Security exam. It includes exam summary, sample questions, practice test, objectives and ways to interpret the exam objectives to enable candidates to assess the types of questions-answers that may be asked during the Linux Foundation Kubernetes and Cloud Native Security Associate (KCSA) exam.
It is recommended for all the candidates to refer the KCSA objectives and sample questions provided in this preparation guide. The Linux Foundation Kubernetes and Cloud Native Security certification is mainly targeted to the candidates who want to build their career in Cloud & Containers domain and demonstrate their expertise. We suggest you to use practice exam listed in this cert guide to get used to with exam environment and identify the knowledge areas where you need more work prior to taking the actual Linux Foundation Kubernetes and Cloud Native Security Associate exam.
Linux Foundation KCSA Exam Summary:
|
Exam Name
|
Linux Foundation Kubernetes and Cloud Native Security Associate (Kubernetes and Cloud Native Security) |
| Exam Code | KCSA |
| Exam Price | $250 USD |
| Duration | 90 minutes |
| Number of Questions | 60 |
| Passing Score | 75% |
| Schedule Exam | The Linux Foundation Training & Certification |
| Sample Questions | Linux Foundation KCSA Sample Questions |
| Recommended Practice | Linux Foundation Kubernetes and Cloud Native Security Associate (KCSA) Practice Test |
Linux Foundation Kubernetes and Cloud Native Security Syllabus:
| Section | Objectives | Weight |
|---|---|---|
| Overview of Cloud Native Security |
- The 4Cs of Cloud Native Security
- Cloud Provider and Infrastructure Security - Controls and Frameworks - Isolation Techniques - Artifact Repository and Image Security - Workload and Application Code Security |
14% |
| Kubernetes Cluster Component Security |
- API Server
- Controller Manager - Scheduler - Kubelet - Container Runtime - KubeProxy - Pod - Etcd - Container Networking - Client Security - Storage |
22% |
| Kubernetes Security Fundamentals |
- Pod Security Standards
- Pod Security Admissions - Authentication - Authorization - Secrets - Isolation and Segmentation - Audit Logging - Network Policy |
22% |
| Kubernetes Threat Model |
- Kubernetes Trust Boundaries and Data Flow
- Persistence - Denial of Service - Malicious Code Execution and Compromised Applications in Containers - Attacker on the Network - Access to Sensitive Data - Privilege Escalation |
16% |
| Platform Security |
- Supply Chain Security
- Image Repository - Observability - Service Mesh - PKI - Connectivity - Admission Control |
16% |
| Compliance and Security Frameworks |
- Compliance Frameworks
- Threat Modelling Frameworks - Supply Chain Compliance - Automation and Tooling |
10% |