Videos

Published on July 5th, 2019 📆 | 4296 Views ⚑

0

Docker Security Insights SUJATHA YAKASIRI

iSpeech

As innovation in technology increases, security becomes trickier. In order to embrace latest technologies like Docker and Kubernetics, Product IT organizations must consider security as top priority. Containers vulnerabilities like “Dirty Cow”, “Escape Vulnerability” and a recent vulnerability “Jack-In-The-Box” when unpacking image etc. have shaken the world. During my talk, I would like to present core issues with Docker related components like daemon, images, containers with practical demos & possible counter measures, Docker Secrets management, Docker Content Trust Signature Verification, Docker notary services, best practices to be followed in production environment and also how to deal with Open Source Libraries used in building images.

Sujatha Yakasiri
Senior Computer Scientist, EdgeVerve Systems Limited
Working as a Senior Computer Scientist at EdgeVerve Systems Limited (An Infosys Company). She is a passionate security researcher, speaker and author with in-depth expertise in pen testing web applications, mobile applications, performing source code reviews and performing threat.

-

Managed by the official OWASP Media Project https://www.owasp.org/index.php/OWASP_Media_Project

source

Tagged with: appsec • docker • Global Appsec • Global AppSec Tel Aviv • insights • owasp • pentesting tutorials • security • sujatha • yakasiri