Your responsibilities with using IBM Cloud Kubernetes Service
Learn about cluster management responsibilities that you have when you use IBM Cloud® Kubernetes Service. For overall terms of use, see Cloud Services terms.
Overview of shared responsibilities
IBM Cloud Kubernetes Service is a managed service in the IBM Cloud shared responsibility model. Review the following table of who is responsible for particular cloud resources when using IBM Cloud Kubernetes Service. Then, you can view more granular tasks for shared responsibilities in Tasks for shared responsibilities by area.
If you use other IBM Cloud products such as Object Storage, responsibilities that are marked as yours in the following table, such as disaster recovery for Data, might be IBM's or shared. Consult those products' documentation for your responsibilities.
Resource | Incident and operations management | Change management | Identity and access management | Security and regulation compliance | Disaster Recovery |
---|---|---|---|---|---|
Data | You | You | You | You | You |
Applications | You | You | You | You | You |
Observability | Shared | IBM | Shared | IBM | IBM |
App networking | Shared | IBM | IBM | IBM | IBM |
Cluster networking | Shared | IBM | IBM | IBM | IBM |
Cluster version | IBM | Shared | IBM | IBM | IBM |
Worker nodes | Shared | Shared | IBM | Shared | IBM |
Master | IBM | IBM | IBM | IBM | IBM |
Service | IBM | IBM | IBM | IBM | IBM |
Virtual storage | IBM | IBM | IBM | IBM | IBM |
Virtual network | IBM | IBM | IBM | IBM | IBM |
Hypervisor | IBM | IBM | IBM | IBM | IBM |
Physical servers and memory | IBM | IBM | IBM | IBM | IBM |
Physical storage | IBM | IBM | IBM | IBM | IBM |
Physical network and devices | IBM | IBM | IBM | IBM | IBM |
Facilities and Data Centers | IBM | IBM | IBM | IBM | IBM |
Tasks for shared responsibilities by area
After reviewing the overview, see what tasks you and IBM share responsibility for each area and resource when you use IBM Cloud Kubernetes Service.
Incident and operations management
You and IBM share responsibilities for the set up and maintenance of your IBM Cloud Kubernetes Service cluster environment for your application workloads. You are responsible for incident and operations management of your application data.
Resource | IBM responsibilities | Your responsibilities |
---|---|---|
Worker nodes |
|
|
Cluster networking |
|
|
App networking |
|
|
Observability |
|
|
Change management
You and IBM share responsibilities for keeping your clusters at the latest container platform and operating system versions, along with recovering infrastructure resources that might require changes. You are responsible for change management of your application data.
Resource | IBM responsibilities | Your responsibilities |
---|---|---|
Worker nodes |
|
|
Cluster version |
|
|
Identity and access management
You and IBM share responsibilities for controlling access to your IBM Cloud Kubernetes Service instances. For IBM Cloud® Identity and Access Management responsibilities, consult that product's documentation. You are responsible for identity and access management to your application data.
Resource | IBM responsibilities | Your responsibilities |
---|---|---|
Observability |
|
|
Security and regulation compliance
IBM is responsible for the security and compliance of IBM Cloud Kubernetes Service. Compliance to industry standards varies depending on the infrastructure provider that you use for the cluster, such as classic or VPC. You are responsible for the security and compliance of any workloads that run in the cluster and your application data. For more information, see What standards does the service comply to?.
Resource | IBM responsibilities | Your responsibilities |
---|---|---|
General |
|
|
Worker nodes |
|
As part of your incident and operations management responsibilities for the worker nodes, apply the provided security patch updates.
|
Disaster recovery
IBM is responsible for the recovery of IBM Cloud Kubernetes Service components in case of disaster. You are responsible for the recovery of the workloads that run the cluster and your application data. If you integrate with other IBM Cloud services such as file, block, object, cloud database, logging, or audit event services, consult those services' disaster recovery information.
Resource | IBM responsibilities | Your responsibilities |
---|---|---|
General |
|
|
Applications and data
You are completely responsible for the applications, workloads, and data that you deploy to IBM Cloud. However, IBM provides various tools to help you set up, manage, secure, integrate and optimize your apps as described in the following table.
Resource | How IBM helps | What you can do |
---|---|---|
Applications |
|
|
Data |
|
|