Binary Authorisation is a deploy-time security control, ensuring only trusted container images can be deployed to Kubernetes.

The process requires signatures for Docker images from trusted authorities during development and then enforces signature verification when deploying.

This lets you have firmer control over your container environment by making sure only verified images can be integrated.