Explore container security enhancement through Linux kernel namespaces in this 29-minute conference talk by Asier Gutierrez from Huawei. Learn about the Integrity Measurement Architecture (IMA) for file attestation and its current limitations in container awareness. Discover a proposed solution to address the lack of kernel-related features for container security, including integration with Kubernetes orchestration system. Gain insights into a remote attestation prototype capable of detecting file changes within containers, enhancing overall container security in cloud environments.
IMA Namespaces for Container Security Enhancement
Overview
Syllabus
IMA Namespaces for Containers - Asier Gutierrez, Huawei
Taught by
Linux Foundation
Tags
Related Courses
-
Securing Docker Container Workloads
-
Deep Dive on Container Security
-
Docker Containers and Kubernetes Fundamentals – Full Hands-On Course
-
Namespacing the Linux Integrity Measurement Architecture
-
What's New in the User Namespace - Recent Developments and Future Outlook
-
A Simple Protocol for Remote Attestation of System Integrity
