The end of life (EOL) of Center for Internet Security (CIS) reinforcement is April 24, 2024. To ensure seamless migration, Container Service for Kubernetes (ACK) will release Alibaba Cloud Linux Security Hardening (OS Security Hardening) and Alibaba Cloud Kubernetes Security Hardening (K8s Security Hardening) at the same time.
Changes and affected services
The EOL of CIS reinforcement is April 24, 2024. If your operating system is enhanced by CIS reinforcement or your cluster is enhanced by CIS Kubernetes enhancement, you can use the OS Security Hardening and K8s Security Hardening features as a replacement.
You can continue to use clusters and nodes that have CIS reinforcement enabled before April 24, 2024. Your existing businesses are not affected. ACK will seamlessly migrate your businesses.
NoteWe recommend that you update the Kubernetes versions of your clusters and operating systems of your nodes at the earliest opportunity after the migration in order to use the latest security hardening features. For more information, see Update an ACK cluster and Node pool updates.
Starting from April 24, 2024, you can enable OS Security Hardening for node operating systems and enable K8s Security Hardening for clusters.
Contact us
If you have any problems or suggestions, submit a ticket or join the DingTalk group to contact us.