Container Security - A Practical Introduction | Red Hat

A PRACTICAL INTRODUCTION TO CONTAINER SECURITY

Red Hat Summit 2020

Bob Kozdemba (bkozdemb@redhat.com) Dan Walsh (dwalsh@redhat.com)

Abstract

Linux containers provide convenient application packaging and run-time isolation in multi-tenant environments. However, the security implications of running containerized applications is often taken for granted. For example, today it is very easy to pull container images from the internet and run them in the enterprise without examining their content and authenticity. In this lab, you’ll complete a series of hands on exercises aimed at understanding the concepts, challenges and best practices associated with deploying containers in a secure fashion.

Labs

Lab 1.0 - Workshop introduction

Lab 2.0 - Container registries

Lab 3.0 - Intro to Podman and base images

Lab 4.0 - Linux kernel capabilities

Lab 5.0 - SELinux container integration

Lab 6.0 - Container inspection with Podman & Skopeo

Lab 7.0 - Container image signing

Lab 8.0 - Composing containers with Buildah

Conclusion - Closing thoughts & homework

Domain
Workshop
Student ID

Student ID

Domain

Workshop

Workshop Details

Domain
Workshop
Student ID