October 30–31, 2016: Training
October 31–November 2, 2016: Tutorials & Conference
New York, NY

Applying Docker security

Ben Hall (Katacoda | Ocelot Uproar)
1:30pm–5:00pm Monday, 10/31/2016
Tools and processes
Location: Grand Ballroom West Level: Intermediate
Average rating: ****.
(4.00, 1 rating)

Prerequisite knowledge

  • General experience running Docker and containers

Materials or downloads needed in advance

  • A laptop with access to a Docker installation (The relevant Docker Images will be provided in advance. Ben recommends using DigitalOcean or Katacoda.com to improve download speeds and as an experimentation playground.)

What you'll learn

  • Understand Linux and Docker's security model, its limitations, and how to maximize your container’s security
  • Explore existing vulnerabilities and the reasons behind them
  • Learn how to protect against future vulnerabilities

Description

Docker offers a lot of advantages, simplifying both development and production environments, but there is still uncertainty around the security of containers. Drawing on and sharing his experience building Katacoda, a platform providing users with a sandboxed and personalized learning playground—with the side effect is that they can execute malicious code and hack the system from inside the container— Ben Hall leads a hands-on demonstration of Docker and container security. You’ll leave the session understanding Linux and Docker’s security model, its limitations, and how to maximize your container’s security.

Topics include:

  • Docker security
  • Docker and Linux vulnerabilities
  • Out-of-the-box security with Docker
  • Securing containers with Seccomp and AppArmor
  • Securing containers using Linux Kernel features
  • Container security tooling
Photo of Ben Hall

Ben Hall

Katacoda | Ocelot Uproar

Ben Hall is the founder of Ocelot Uproar, a company focused on building products loved by users. Ben has worked as a system administrator, tester, and software developer and launched several companies. He still finds the time to publish books and speak at conferences. Ben enjoys looking for the next challenges to solve, usually over an occasional beer. Ben recently launched Katacoda, an online learning environment for developers that helps break down the barriers to learning new technologies such as Docker and containers.