Namespace without network policy defined

Lateral movement

Namespace without network policy defined

Risk Level

Informational (4)

Platform(s)

Compliance Frameworks

AKS CIS
EKS CIS
GKE CIS
HITRUST
ISO/IEC 27001
K8s CIS
K8s OWASP Top 10
NIST 800-190

Description

Network Policies are namespace scoped. When a network policy is introduced to a given namespace, all traffic not allowed by the policy is denied. However, if there are no network policies in a namespace all traffic will be allowed into and out of the pods in that namespace. Orca has detected that {K8sNamespace} namespace does not have a network policy defined.

Recommended Mitigation

Consider adding a network policy for {K8sNamespace} namespace.

Namespace without network policy defined

Description

Need help?

CLOUD SECURITY PLATFORM

TECHNOLOGY ECOSYSTEM

By Solution

By Industry

COMPARISONS