Explore microservice security in an open source sock shop through this GOTO 2016 conference talk. Delve into PCI compliance, trust limitations, and surface area reduction strategies. Learn about container security aspects, including user insertion and capabilities. Discover network segmentation techniques, policy implementation, and software-defined networking. Gain insights into secure software development processes and practical applications in the context of an open-source sock shop. Understand the challenges and best practices for enhancing microservice security, with demonstrations and real-world examples provided throughout the presentation.
Secure Socks - Exploring Microservice Security in an Open Source Sock Shop
Overview
Syllabus
Introduction
PCI Compliance
Do or Do Not Trust
Limit Surface Area
PCI Compliant
Security is Hard
Software Development Process
Open Source Sock Shop
Content of Security
Container Security Aspects
Insert Container User
Capabilities
Example
libcap
capdrop
Cuban Acid
Recap
Did you know
Sock Locks
Network Segmentation in Policy
Demo Application
Firewall
Trump File
Firewalls
Network Segmentation
Testing
Network Policy bouncer
Example Network Policy
SoftwareDefined Network
Wrapping Up
Sock Shop
Wrap up
Source code
Taught by
GOTO Conferences
