Seccomp Security Profiles and You - A Practical Guide
CNCF [Cloud Native Computing Foundation] via YouTube
Overview
Explore the practical application of seccomp security profiles and Linux Capabilities in this 28-minute conference talk by Duffie Cooley from VMware. Gain insights into tools designed to simplify the process of determining necessary syscalls for application hardening. Learn about Dockersl.im, an open-source project that produces smaller images with derived seccomp security profiles, and Inspektor Gadget, which uses BPF to inspect pod activities. Discover how these tools can enhance visibility into syscall and filesystem access, making security profile implementation more approachable for developers and system administrators.
Syllabus
Seccomp Security Profiles and You: A Practical Guide - Duffie Cooley, VMware
Taught by
CNCF [Cloud Native Computing Foundation]