Explore the world of syscalls in this 40-minute Docker conference talk. Discover how syscalls are used to set up containers and learn to enhance deployment security by limiting container syscalls using seccomp and Linux security modules like AppArmor. Gain insights into the security advantages of containerized microservices over traditional monoliths, with practical demonstrations to illustrate key concepts. Delve into topics such as syscall basics, kernel interactions, Set Comp, STrace, and microservices architecture. Understand how to leverage these techniques to improve overall system security and convince your security team of the benefits of container adoption.
What Have Syscalls Done for You Lately? - Exploring Container Security
Overview
Syllabus
Intro
What is a Syscall
Syscalls in action
Cisco parameters
The kernel
Set Comp
STrace
AppArmor
Microservices
Shellshock
Recap
Taught by
Docker
Related Courses
-
Making Unprivileged Containers More Usable
-
Introduction to the Kubernetes Seccomp Operator
-
On the Way to Safe Containers - Security and Resource Management in LXC and LXD
-
Towards the Hardened Cloud-Native Cornerstone: Container Runtime Protection
-
Docker Security
-
Making Containers Safer - Security Features and New Developments
