How to lose a container in 10 minutes

Presented at Diana Initiative 2019, Aug. 10, 2019, 9 a.m. (30 minutes)

Moving to the cloud and deploying containers? In this talk I discuss both the mindset shift and tech challenges, with some common mistakes made in real-life deployments with some real life. We'll also be looking at my ongoing research about how easy (or not) it is to get a container or kubernetes cluster hacked on purpose.

Presenters:

• Sarah Young - Cloud Security Architect at Microsoft
  Sarah is a cloud security architect working for Microsoft and based in Melbourne, Australia. She has a decade of experience in tech and is particularly interested in cloud security, container/orchestrator security and good ol' fashioned networking and infrastructure security (having previously worked as a network engineer). Sarah has spoken around the world at a variety of info sec conferences about a range of security and technical topics.

Links:

• https://dianainitiative2019.busyconf.com/schedule#activity_5c42e1d7d7192065df000119

Similar Presentations:

• DerbyCon 8.0 Evolution (2018) / Living in a Secure Container, Down by the River
• BSidesSF 2019 / How to Lose a Container in 10 Minutes
• BruCON 0x0A (2018) / Outside the Box: Breakouts and Privilege Escalation in Container Environments