Docker Container Security presented at saintcon 2016

by Kevin Stultz,

Summary : Containers are providing the next wave of data center optimization which provides tremendous benefits for IT and Application developers but brings new challenges to IT Security. We will present the new challenges the highly dynamic world of containers brings to IT Security and how to insure containers can be agentlessly secured and monitored using Symantec Data Center Security. They key use case we will review are:
Visibility - containers, their metadata and status (online/offline).
Real-time security and compliance monitoring of the Docker host and it's containers.
Insure critical files and services specified in the CIS Docker Benchmark are being monitored.
Preventing container escape via know exploits or backdoors.
Integrating security into container management process.