Measures

Labels primarily have the task of structuring Kubernetes objects. A label convention allows tools, such as dashboards, to work interoperably and describe objects in a common way that all tools can understand.

Furthermore, with labels it is possible to easily separate different resources, such as different versions of the same software.

Last but not least, labels are the link between pods and services. Therefore, a label convention also helps the usability and availability of applications, or jeopardizes confidentiality if incorrect labeling allows pods to communicate with the outside world that should not, thus exposing confidential data.

In this security concept, the application deployers are responsible for the labels in the roles/rights concept. They should therefore familiarize themselves with the links below.