Dynamic Authorization and Policy Control for Docker Container Environments

Explore how to enable rapid deployment of innovative applications on Docker containers while satisfying strict InfoSec and compliance requirements in this 47-minute conference talk. Learn about the Open Policy Agent (OPA), an open-source tool that allows updating and enforcing policies without slowing down developers or modifying application code. Join Justin Cormack, Security Engineer at Docker, and Torin Sandall, Co-founder of the OPA project, as they demonstrate leveraging integrations between Docker and OPA to enforce fine-grained policies in container platforms. Gain insights into policy definition, context data, variable binding, program examples, testing, Kubernetes Admission Control, and Anoka Admission Control. Aimed at engineers building and operating container platforms interested in security and policy enforcement, acquire fresh ideas for implementing fine-grained security policies across container environments.

Introduction
What is policy
Open Policy Agent
Open Policy Example
Context Data
Binding variables
Example Program
Testing
Kubernetes Admission Control
Anoka Admission Control
Conclusion
Questions