How (Not) To Containerise Securely
Lessons Learned the Hard Way
- Track: Containers devroom
- Room: UD2.208 (Decroly)
- Day: Saturday
- Start: 15:10
- End: 15:40
This talk details low level exploitable issues with container and Kubernetes deployments. We focus on lessons learned, and show attendees how to ensure that they do not fall victim to avoidable attacks.
Andy has made mistakes. He's seen even more. And in this talk he details the best and the worst of the container and Kubernetes security problems he's experienced, exploited, and remediated.
See how to bypass security controls, exploit insecure defaults, evade detection, and root clusters externally (and more!) in this interactive and highly technical appraisal of the container and cluster security landscape.
Speakers
Andrew Martin |