View all product documentation

Binary Authorization is a service on Google Cloud that provides centralized software supply-chain security for applications that run on Google Kubernetes Engine (GKE) and Distributed Cloud. Learn more

Documentation resources

Find quickstarts and guides, review key references, and get help with common issues.
Explore self-paced training from Google Cloud Skills Boost, use cases, reference architectures, and code samples with examples of how to use and connect Google Cloud services.
Training
Training and tutorials

Secure your GKE Deployments with Binary Authorization

This lab describes how to secure a GKE cluster using Binary Authorization.

GKE

Learn more  
Training
Training and tutorials

Secure your GKE Deployments with Binary Authorization

Add deploy-time policy enforcement to your GKE cluster.

GKE

Learn more  
Training
Training and tutorials

Get started using the command-line tool

Get up and running quickly with GKE and Binary Authorization with this end-to-end getting started tutorial.

GKE

Learn more  
Training
Training and tutorials

Multi-project setup

Use different projects to restrict access for different activities, enforcing separation of duties.

GKE

Learn more  
Training
Training and tutorials

Create attestations based on vulnerability scanning

Use Kritis Signer to scan a container image with Artifact Analysis before creating attestations.

Kritis Container Analysis

Learn more  
Training
Training and tutorials

View audit logs for Binary Authorization

View audit logs for Binary Authorization events.

GKE Cloud Audit Logs

Learn more  
Training
Training and tutorials

View audit logs for Binary Authorization for Google Distributed Cloud (GDC)

View audit logs for Binary Authorization events for Google Distributed Cloud.

GKE on-prem Cloud Audit Logs

Learn more  
Training
Training and tutorials

Monitor metrics for Binary Authorization for Google Distributed Cloud

Monitor metrics from Binary Authorization for GKE on-prem.

GKE on-prem Cloud Monitoring

Learn more  
Use case
Use cases

Security controls and forensic analysis for GKE apps

Details instrumentation and tools used in forensic analysis for apps deployed to GKE.

Security Container analysis

Learn more  
Use case
Use cases

Help secure software supply chains on GKE

Shows you how to ensure that your supply chain follows a known and secure path before you deploy your code in a GKE cluster.

DevOps

Learn more  
Code Samples
Code Samples

Google Provider

With Google Provider for Terraform, you can configure your Google Cloud infrastructure.

Learn more  
Code Samples
Code Samples

Attestor Provider

Create Binary Authorization attestors.

Learn more  
Code Samples
Code Samples

IAM policy for Binary Authorization Attestor

Three different resources help you manage your IAM policy for Binary Authorization Attestor.

Learn more  
Code Samples
Code Samples

Binary Authorization Policy

Configure a Binary Authorization policy.

Learn more  

Related videos