Securing your application using Docker

Presented at AppSec USA 2015, Sept. 24, 2015, 10:30 a.m. (55 minutes).

In recent years applications have fundamentally changed, led largely by changing software development practices. These new applications not only behave differently but their architecture fundamentally changes how they are built, deployed, managed and secured over time. Instead of provisioning large servers to process a few large workloads in virtual machines or bare metal, collections of small applications are being run across a collection of commodity hardware. With more applications sharing the same OS, containers have risen as the appropriate model for packaging these smaller applications.

The best practices around security of applications have long recommended the use of multiple layers in order to increase the overall resilience of a system. Containers create exactly that: an additional layer of protection between applications and the host, and between the applications themselves.

This talk will go over how deploying your current applications using Docker containers makes your infrastructure safer by default. It will cover the topics of lifecycle management, best practices for Docker configuration and more advanced features, such as the use of Linux Security Modules (LSMs).


Presenters:

  • Diogo Monica - Security Lead - Docker
    Diogo Mónica is the Security Lead at Docker, an open platform for building, shipping and running distributed applications. He was an early employee at Square where he led the platform security team. He received his BSc and MSc degrees in Communication Networks Engineering and is currently a Security Researcher at the Technical University of Lisbon. Diogo also serves on the board of advisors of several security startups and is a long-time IEEE Volunteer.

Links:

Similar Presentations: