Put open source to work
July 16–17, 2018: Training & Tutorials
July 18–19, 2018: Conference
Portland, OR

TL;DR: NIST container security standards

Elsie Phillips (CoreOS), Paul Burt (CoreOS)
1:45pm2:25pm Wednesday, July 18, 2018
Distributed computing
Location: Portland 255
Level: Beginner
Average rating: **...
(2.25, 4 ratings)

Who is this presentation for?

  • DevOps engineers, architects, and developers

Prerequisite knowledge

  • A basic understanding of containers

What you'll learn

  • Learn key recommendations for container security, including the importance of using container-specific host OSes and using tooling specific to containers to monitor for vulnerabilities, and how to implement them

Description

In September 2017, the National Institute of Standards and Technology issued a 63-page paper detailing its recommendations for container security. While the report is chock-full of recommendations all cloud-native users should implement, it’s not a text most people will actually read.

Elsie Phillips and Paul Burt share key takeaways from the NIST container security standard report, including the importance of using container-specific host OSes and using tooling specific to containers to monitor for vulnerabilities, and offer suggestions for how to implement them within an organization.

Photo of Elsie Phillips

Elsie Phillips

CoreOS

Elsie Phillips is a product marketing manager at CoreOS, where she herds the CoreOS community and coleads the Kubernetes Contributor Experience SIG. She’s a Northwest native who got her start in open source working at the Oregon State University Open Source Lab. In her free time, she throws wild one-woman dance parties and makes a mean vegan chocolate chip cookie.

Photo of Paul Burt

Paul Burt

CoreOS

Paul Burt is a community manager at CoreOS. He’s also the one upvoting your /r/kubernetes threads and answering your #coreos questions on freenode. Paul has a knack for demystifying infrastructure and making gnarly, complex topics approachable. He enjoys home-brewing beer, reading independent comics, and yelling at his computer when it doesn’t do what he wants.