POPULARITY
This interview was recorded for the GOTO Book Club.http://gotopia.tech/bookclubLiz Rice - Author of "Container Security"Eoin Woods - CTO of EndavaDESCRIPTIONWhat should you do to secure your containers?Liz Rice, author of the book Container Security: Fundamental Technology Concepts that Protect Containerized Applications & VP of open source engineering at Aqua Security, and Eoin Woods, CTO at Endava, explore what containers are, what are the implications of a shared kernel and how to assess potential security risks that could affect your deployments. Learn best practices and understand how containers work in this Book Club interview.The interview is based on Liz's book "Container Security": https://amzn.to/3oU4iJeRead the full transcription of the interview here:https://gotopia.tech/bookclub/episodes/secure-your-containers-liz-riceRECOMMENDED BOOKSLiz Rice • Container Security • https://amzn.to/3oU4iJeLiz Rice • Kubernetes Security • https://www.oreilly.com/library/view/kubernetes-security/9781492039075https://twitter.com/GOTOconhttps://www.linkedin.com/company/goto-https://www.facebook.com/GOTOConferencesLooking for a unique learning experience?Attend the next GOTO conference near you! Get your ticket at https://gotopia.techSUBSCRIBE TO OUR YOUTUBE CHANNEL - new videos posted almost daily.https://www.youtube.com/GotoConferences
Michael Hausenblas is a Product Developer Advocate, Amazon Web Services (AWS) Container Service team. Michael & Ashish spoke about Basics of Container Security Keeping Containers stateless vs building data stores in container cluster Container Security for someone starting on Container security today Misconceptions around Container Security? What a mature container security looks like? Incident Response in Container cluster environments? More details in the podcast. More info and show notes on www.cloudsecuritypodcast.tv Twitter - @kaizenteq @hashishrajan Michael Hausenblaus - Twitter @mhausenblas
Docker. You know it. You use it. You might well be confused by it. Is it Docker? Or is it docker? And why has Docker (or docker) taken a back seat to Kubernetes? There are so many questions regarding this technology. But one question that has been on the hearts and minds of many a container administrator is security. You might think that, given the isolated nature of containers, they'd be harmless. On certain levels that is the case. If a container is deployed correctly, it cannot access the deploying ecosystem. In theory. But, as we've all discovered in the realm of technology, where there's a will there's a way. Although you might fully understand how to deploy a containerized application and scale it out to meet the needs of your company, are you taking the necessary steps to ensure that application, and the hosting environment, is as secure as possible? What can you do? Listen as Jack Wallen discusses these topics with Scott McCarty, principal product manager for containers at Red Hat.
In this episode I answer a question about how to start a Swarm service container in privileged mode.
In episode 29 of The Secure Developer, Guy sits down with Liran Tal, Developer Advocate at Snyk, to discuss the state of open source, Docker security, and developer infrastructure. The post Ep. #29, The State of Open Source & Docker Security appeared first on Heavybit.
In episode 29 of The Secure Developer, Guy sits down with Liran Tal, Developer Advocate at Snyk, to discuss the state of open source, Docker security, and developer infrastructure.
We chat with Ashley Ward, Solution Architect at Twistlock, around Docker security and some initial security concerns for Docker images.
Paul delivers the Technical Segment this week entitled "Docker Security Incident: Lessons Learned"! Full Show Notes: https://wiki.securityweekly.com/Episode559 Subscribe to our YouTube channel: https://www.youtube.com/securityweekly Visit our website: http://securityweekly.com Follow us on Twitter: https://www.twitter.comsecurityweekly
Paul delivers the Technical Segment this week entitled "Docker Security Incident: Lessons Learned"! Full Show Notes: https://wiki.securityweekly.com/Episode559 Subscribe to our YouTube channel: https://www.youtube.com/securityweekly Visit our website: http://securityweekly.com Follow us on Twitter: https://www.twitter.comsecurityweekly
A listener asked for a recommendation for a PodCast or Blog post about Docker security. We looked, couldn’t find one, so we decided to create one. Robert interviews Jay Beale from Inguardians and asks what is docker, what threats does it introduce, and what are the specific tie-ins with AppSec. Enjoy! The post Docker Security and AppSec (S02E11) – Application Security PodCast appeared first on Security Journey Podcasts.
Love it or hate it, Docker (and containers) are here to stay. Embrace change in this segment where Paul and Apollo discuss using Docker in the enterprise. We cover security considerations, deployment scenarios and much more! Full Show Notes: https://wiki.securityweekly.com/ES_Episode51 Visit http://securityweekly.com/esw for all the latest episodes!
Love it or hate it, Docker (and containers) are here to stay. Embrace change in this segment where Paul and Apollo discuss using Docker in the enterprise. We cover security considerations, deployment scenarios and much more! Full Show Notes: https://wiki.securityweekly.com/ES_Episode51 Visit http://securityweekly.com/esw for all the latest episodes!
Software Engineering Radio - The Podcast for Professional Software Developers
Docker Security Team lead Diogo Mónica talks with SE Radio’s Kim Carter about Docker Security aspects. Simple Application Security, which hasn’t changed much over the past 15 years, is still considered the most effective way to improve security around Docker containers and infrastructure. The discussion explores characteristics such as Immutability, the copy-on-write filesystem, as well […]
Software Engineering Radio - The Podcast for Professional Software Developers
Docker Security Team lead Diogo Mónica talks with SE Radio’s Kim Carter about Docker Security aspects. Simple Application Security, which hasn’t changed much over the past 15 years, is still considered the most effective way to improve security around Docker containers and infrastructure. The discussion explores characteristics such as Immutability, the copy-on-write filesystem, as well as orchestration principles that are baked into Docker Swarm, such as mutual TLS/PKI by default, secrets distribution, least privilege, content scanning, image signatures, and secure/trusted build pipelines. Diogo also shares his thoughts around the attack surface of the Linux kernel; networking, USB, and driver APIs; and the fact that application security remains more important to focus our attention on and get right.
Robert and I are joined by Mike Landeck. Mike is a Cyber security evangelist, AppSec junky & Docker Security geek, and can be found on twitter @MikeLandeck. We interviewed Mike in person at the ISC2 Security Congress event in Orlando, Florida. We discussed his latest talk on breach fatigue, the need to reach outside the [...] The post Interview: Security Must Meet the Needs of the Business (S01E08) – Application Security PodCast appeared first on Security Journey Podcasts.
Aaron and Brian do their annual 2015 WrapUp show. They look at the most interesting shows, trends and topics from 2015, as well as making predictions for 2016. Show Notes: Krispy Kreme Challenge Donations Topic 1 - Is Public Cloud making any money? Topic 2 - Is Open Source Software making any money Topic 3 - Everything is becoming an integrated solution. Topic 4 - Bi-Modal vs. Tri-Modal IT Topic 5 - The continued rise of SaaS applications (and who manages them) Topic 6 - The continued rise of non-vendor companies recruiting developers Show Stats and Interesting Facts 60 Shows Official Podcast at Cloud Foundry Summit, MesosCon, LinuxCon, DockerCon, VelocityConf, OSCON Went over $5B in VC + M&A Funding for Guests Most Popular Show(s) of 2015: Eps.200 (Future of Connected Cloud; Christian Reilly) Eps.199 (Docker Security; Diogo & Nathan) Eps.208 (DevOps; Nathan Harvey) Aaron’s 2015 Predictions - From 2014 show Container ecosystem is beginning to mature Docker needs to go through Trough of Disillusionment Skill Sets Changing - Blogging will become a lost art GitHub or “GetOut” - people need to learn GitHub - see 30 Days of Commitmas (GitHub learning) Existence of Bi-Modal IT - There is no migration path between the two. “Infrastructure as a Code” replaces “Software-Defined” terminology Infrastructure jobs will become the operations portion of DevOps (automate everything) Brian’s 2015 Predictions - From 2014 show Containers, Containers, Containers - competition for Docker in containers (VMware, CoreOS, etc.)? Moved from Containers to Systems. Containers/Docker were mentioned everywhere (AWS, Tutum, Microsoft, DigitalOcean) VMware pushes that “containers need VMs” AWS is finally starting to understand the Enterprise; bundling/integrating services Nobody values Cloud Management software How do the VCs justify all this investment in companies that drive open-source projects? What happens to all the SaaS tools platforms on AWS, can they survive economically? Our Grades on Various Topics/Companies/Themes OpenStack AWS Azure Google Cisco Other Public Clouds Private Cloud or Hybrid Cloud VMware Docker Cloud Foundry Open Source centric companies (CoreOS, Hashicorp, Mesosphere) Cluster-Management and Schedulers (Kubernetes, Mesos, Swarm) SaaS Applications Brian’s 2016 Prediction Notes: We’ll continue to see big bets (legacy vendors) and big failures Very curious to watch the open-source VMware-replacements (Hashicorp, CoreOS, Docker, etc.) monetize their business We’ll begin to hear about some IoT success stories Aaron’s 2016 Prediction Notes: Industry Predictions: Docker Trough of Disillusionment will happen (push from last year) in favor of Open Standards We will consolidate down to a handful of large hardware and software vendors in one (Oracle, Cisco, Dell) and pr
Aaron talks to Cloudcast alum Diogo Monica and Nathan McCauley (@diogomonica and @nathanmccauley; Security Leads @Docker) about the focus on security at DeckerConEU, hardware signing of containers, the evolution and updates to Docker Notary and Trusted Registry, Project Nautilus and the security scanning of containers, and secret data in Docker Control Plane Show Links: Thank you to Docker for having us as a media sponsor at Dockercon EU This show sponsored by Intel Cloud For All Docker Blog The Cloudcast #199 - Docker Security
This week Dave and Gunnar talk with Dan Walsh about containers, coloring books, and bedtime stories. Translate me: The Container Coloring Book by Dan Walsh and Máirín Duffy Red Hat Summit video: Container security: Do containers actually contain? Should you care? Red Hat Summit video: Super privileged containers Articles and more Are Docker containers really secure? Keeping Up with Docker Security We Give Thanks Dan Walsh for being our special guest star! Máirín Duffy for her illustrations.
Aaron and Brian talk to Diogo Monica and Nathan McCauley (@diogomonica and @nathanmccauley; Security Leads @Docker) about their security background at Square, Docker Notary, how security is evolving around containers, Docker best practices and tools, and how Docker is treating container security with Windows. Interested in the O'Reilly OSCON? Want to register for OSCON now? Use promo code 20CLOUD for 20% off Details to win an OSCON pass coming soon! Check out the OSCON Schedule Free eBook from O'Reilly Media for Cloudcast Listeners! Check out an excerpt from the upcoming Docker Cookbook Links from the show: Docker Notary Understanding Docker Security Best Practices Docker Bench Security (automate the security checks) Topic 1 - Being “the Security Guys” at one of the hottest companies on the planet has to be on the more interesting jobs out there. Tell us about your background. Topic 2 - A few months ago, there was some concerns about “container security”, and then Docker came out with a bunch of Best Practices. How quickly is security focus ramping up within Docker? Topic 3 - Let’s talk about Docker “Notary”. What is it, how does it work? Topic 4 - Docker has a focus on developers - Solomon said this morning during the keynote, “Reinvent the Developers Toolbox - for Distributed Applications”. We were talking at lunch that Security isn’t top of mind for them. Topic 5 - How does the Windows + Docker activities fit into this security framework? Music Credit: Nine Inch Nails (nin.com)
This week, Dave and Gunnar talk about Barthelona, Gaudi, Toledo, Detroit, the Stasi, and why cloud providers can’t have nice things. Barcelona and Detroit trip report Barcelona Uber is there but illegal Nova Icària is the Egts family’s preferred Barcelona beach When in town, be sure to check out Montserrat, Las Ramblas, and Sagrada Família Detroit Maker Faire Dave highly recommends: The Henry, Autograph Collection The Stasi almost caught up to Dave Truck crashes into East Toledo Tony Packo’s Toledo faces water crisis after dangerous toxin found in supply Don’t Drink the Water … In Lake Erie “Don’t order the Toledo Outback Bloomin’ Algae. It’s terrible.” Gunnar can’t stop watching the new Mad Max trailer Stasi doppelgänger follow up: Chinese 3D Printer Allows You to 3D Print a Human Sized 1:1 Wax Replica of Yourself Almost related: Bannerman = Uber for bodyguards Chromecast to use ULTRASOUND Striesand is an onramp-to-darkweb-in-a-box. Think of the Streisand Effect. HT Robin Price: Google’s Project Zero Now you can experience the ultimate joy like never before using Pinwheel! Obama administration says the world’s servers are ours Is AWS stumbling? Lowering Cost of Government IT on August 21 Lauren’s new Raspberry Pi project’s maiden voyage: Impossible Deceptions, Charles Peachock & Jason Alan Magic on August 23 Dear EPA: Please buy CloudForms. Love, Dave and Gunnar. Start here with James Labocki and Thomas Cameron InfoWorld ♥s OpenShift OpenShift Enterprise on Autonomic Resources’ PaaS solution, ARCWRX, is “in evaluation” for FedRAMP authorization Want to learn more? Dan Walsh on Docker Security Cutting Room Floor Weird Al’s Foil — stay for the plot twist David A. Wheeler bait! Mathematically-proved OS kernel is open source (on Github) Watch James Baldwin debate William F. Buckley at Cambridge in 1966 Gunnar is ready for this 34″ monitor Bertolt Brecht sings “Mack the Knife” and creeps Gunnar out Declassified: The Government’s Secret Plan For a Military Moon Base That Time The CIA Kidnapped A Soviet Spacecraft MakerBot 3D printers now available in a dozen Home Depot stores Tips For Crafting A Strong Password That Really Pops We Give Thanks HT Robin Price for the Project Zero heads up