DevOps Conference
The Conference for Continuous Delivery, Microservices,
Containers, Clouds and Lean Business

Security: Filtering System Calls in Docker and Kubernetes

Session
Until Conference Starts:
✓ Group Discount
✓ Individual offers for
Freelancers and employees of scientific institutions

Register now
Bis Konferenzbeginn
✓ Kollegenrabatt

✓ Sonderkonditionen für Freelancer und
Mitarbeiter von wissenschaftlichen Einrichtungen

✓ Bis zu 375 € sparen
Jetzt anmelden
Until January 23:
✓ Raspberry Pi or C64 Mini for free
✓ Save up to $330
✓ Group Discount
Register now
Until January 23:
✓ Raspberry Pi or C64 Mini for free
✓ Save up to $330
✓ Group Discount
Register now
Until January 30:
✓ Team Discounts
✓ Raspberry Pi or C64 Mini for free
✓ Save over £329
Register Now

Until January 30:
✓ Team Discounts
✓ Raspberry Pi or C64 Mini for free
✓ Save over £329
Register Now

Until March 5:
✓ Transformation Day for free
✓ Raspberry Pi or C64 Mini for free
✓ Save over 850 €
Register now
Bis 5. März:
✓ Transformation Day for free
✓ Raspberry Pi oder C64 Mini for free
✓ Über 850 € sparen
Jetzt anmelden
Until June 18:
✓ Workshop Day for free
✓ Raspberry Pi or C64 Mini for free
✓ Save over $840
Register now
Until June 18:
✓ Workshop Day for free
✓ Raspberry Pi or C64 Mini for free
✓ Save over $840
Register now
Infos
Tuesday, December 3 2019
16:45 - 17:45
Room:
Ballroom B

Not all containers are trustworthy – and even those you build yourself can be hacked. Malicious software might be included in the images, or downloaded into the container at runtime. While generic containers should keep the bad guys contained (hence, the name) it is possible to further improve security by limiting which system calls a container may execute. In this talk we’ll explain what system calls are, exactly how to filter them with Kubernetes and Docker, and how doing so improves security.

Take me to the program of Zum aktuellen Programm von Munich München .

This Session belongs to  Diese Session gehört zum Programm vom MunichMünchen and  und New YorkNew York . Take me to the program of . Hier geht es zum aktuellen Programm von Singapore Singapur .

This Session belongs to  Diese Session gehört zum Programm vom MunichMünchen and  und New YorkNew York . Take me to the program of . Hier geht es zum aktuellen Programm von London London .

This Session belongs to  Diese Session gehört zum Programm vom MunichMünchen and  und New YorkNew York . Take me to the program of . Hier geht es zum aktuellen Programm von Berlin Berlin .

Take me to the program of Zum aktuellen Programm von New York New York .

This Session Diese Session belongs to gehört zum Programm von MunichMünchen and  und New YorkNew York . Take me to the program of . Hier geht es zum aktuellen Programm von Munich München , Singapore Singapur , London London , Berlin Berlin  and  und  New York New York .

Stay tuned:

Behind the Tracks

 

Kubernetes Ecosystem

Docker, Kubernetes & Co

Microservices & Software Architecture

Maximize development productivity

Continuous Delivery & Automation

Build, test and deploy agile

Cloud Platforms & Serverless

Cloud-based & native apps

Monitoring, Traceability & Diagnostics

Handle the complexity of microservices applications

Security

DevSecOps for safer applications

Business & Company Culture

Radically optimize IT

Organizational Change

Overcome obstacles on the way towards DevOps

Live Demo #slideless

Showing how technology really works