Use CNIs that are not prone to ARP poisoning
Info
ID: MS-M9028
MITRE mitigation: -
Kubernetes default CNI (Kubenet) is prone to ARP poisoning. This allows pods to impersonate other pods in the cluster. Use alternative CNIs that are not prone to ARP poisoning in the cluster.
Techniques Addressed by Mitigation
| ID | Name | Use |
|---|---|---|
| MS-TA9036 | ARP poisoning and IP spoofing | Use CNIs that are not prone to ARP poisoning. |