Hacked! Run Time Security for Containers

Explore run-time security monitoring, policy enforcement, and forensics for containers in this 42-minute Docker conference talk. Learn how to improve your security posture in production environments by implementing robust solutions based on system call activity signals. Discover techniques for detecting and protecting against zero-day threats and unknown events in containerized environments. Gain insights into viewing container activity, applying consistent policies across microservices, and leveraging Docker Data Center or Kubernetes metadata for auditing and forensics purposes. Understand the types of events to monitor, how to set up effective alerting systems, and conduct deep forensics during security incidents. Walk away with practical knowledge on building a comprehensive container security platform, understanding services, detecting malicious behavior, and implementing tools like Digg Secure and Cystic Inspect to enhance your container security strategy.

Intro
Container Security
Building a Container Security Platform
Understanding Services
Detect Bad Behavior
Digg Secure
Live Demo
Cystic Inspect