Workshop: Docker Security Workshop

Location:

Level: 
Intermediate

When:

1:00pm - 4:00pm

Key takeaways

Understand the different ways in which a container can be compromised

Understand the various methods that can be employed to protect containers

Prerequisites

A WiFi-enabled laptop with access to SSH (You'll be provided with a login to a cloud VM and need to be able to SSH into this machine. It's not possible to follow along on a local instance due to the need to download large images.)

This course will explain how to secure a modern, microservice-based system. Attendees will start by running and hacking into a vulnerable system, before switching roles and using various Docker tools and features to protect the system. While the tutorial focuses on Docker, the patterns and information can help secure any production container system.

Topics covered will include:

  • Creating and running a simple container-based service
  • Switching roles to attack and compromise the service
  • Looking at how to respond to an attack
  • Investigating various ways to improve the security of the system, including scanning images for vulnerabilities and limiting the privileges of running containers

Speaker: Adrian Mouat

Chief Scientist @containersoluti (Container Solutions)

Adrian Mouat is the Chief Scientist at Container Solutions, a European services company specialising in container technologies. He is currently researching container orchestration platforms and image management. Adrian is a member of the Docker Captains program.

Find Adrian Mouat at

Other Workshops:

Tracks

Monday, 6 March

Tuesday, 7 March

Wednesday, 8 March