The Must-Attend

Open Infrastructure Event

The world runs on open infrastructure. At the OpenStack Summit, you’ll learn about the mix of open technologies building the modern infrastructure stack, including OpenStack, Kubernetes, Kata Containers, Docker, Ansible, Ceph, OVS, OpenContrail, OPNFV, and more. Whether you are pursuing a private, public or multi-cloud approach, the OpenStack Summit is the place to network, skill up and plan your cloud strategy.

  
Austin
April 25-29, 2016

The Must-Attend

Open Infrastructure Event

Join the movement behind the most widely deployed open source cloud platform. Whether you are pursuing a private, hybrid or multi-cloud approach, the OpenStack Summit is the place to network, skill up and plan your cloud strategy.

  
Austin
April 25-29, 2016

Event Details


Introduction to Container Security

Application containerization is one of the coolest technologies in IT. It solves numerous problems, allows for incredible application density, and can really increase flexibility and responsiveness. But not everyone understands what makes up container security - it's a LOT more than what application is in the container.

In this session, Red Hat’s global solution architect leader, Thomas Cameron, will talk about the basic components of container security. He'll talk about kernel namespaces, Security Enhanced Linux, Linux control groups, the Docker daemon, etc. and how they all work. He'll provide demonstrations of how each of these technologies affect security.

He'll also talk about tips and tricks for planning a secure container environment, describe some “gotchas” about containers, and debunk some of the security myths about containers.

Attendees will understand the fundamentals of container security when they leave.


What can I expect to learn?

Attendees are expected to learn what goes on "under the hood" to secure containers. Many folks understand the security implications of the container's payload - the application framework, the language used, etc. But I have been surprised at how often folks don't understand what kernel namespaces and SELinux do behind the scenese to isolate containers and keep the rest of the system safe. This session aims to teach them about those parts of the system outside of just the container which protect their enterprises.

Tuesday, April 26, 2:50pm-3:30pm
Level: Beginner
Global Cloud Strategy Evangelist
Thomas Cameron is a Global Cloud Strategy Evangelist at Red Hat. He has been in the information technology industry since 1993, and has held certifications as a Novell Certified NetWare Engineer and a Microsoft Certified Systems Engineer/Trainer. Thomas is currently a Red Hat Certified Architect (RHCA), a Red Hat Certified System Administrator in Red Hat OpenStack, a Red Hat Certified... FULL PROFILE