YoVDO

gVisor: Modern Linux Sandboxing Technology - Hack In The Box 2023

Offered By: Hack In The Box Security Conference via YouTube

Tags

Linux Security Courses Virtualization Courses Container Security Courses Cloud-Native Security Courses ptrace Courses gVisor Courses

Course Description

Overview

Save Big on Coursera Plus. 7,000+ courses at $160 off. Limited Time Only!
Explore modern Linux sandboxing technology in this 46-minute conference talk from the Hack In The Box Security Conference. Dive into the world of Linux sandboxes, examining various solutions and primitives while focusing on gVisor as a powerful sandboxing tool. Learn about the importance of sandboxing in information security and the challenges of finding an ideal solution that balances ease of use, security focus, and full observability. Discover the speaker's approach to creating a process-level sandbox based on gVisor, including its design, implementation, and resolved issues. Gain insights into applying this new sandbox solution across various security areas through practical examples. The talk also covers background on Linux sandboxes, primitives like ptrace and LD_PRELOAD, and existing solutions such as nsjail and firejail. Presented by Li Qiang, a senior security engineer at Ant Group with extensive experience in virtualization, container, kernel, and cloud-native security.

Syllabus

#HITB2023HKT D1T2 - gVisor: Modern Linux Sandboxing Technology - Li Qiang


Taught by

Hack In The Box Security Conference

Related Courses

Evolution of a Platform as a Service from the Inside
Devoxx via YouTube From Secure Container to Secure Service
Linux Foundation via YouTube Running Untrusted Code with gVisor - Container Security and Sandboxing
Linux Foundation via YouTube Security in the Cloud with Falco - Overview and Project Updates
CNCF [Cloud Native Computing Foundation] via YouTube gVisor and Falco - Strengthening Kubernetes and Container Security with Visibility
CNCF [Cloud Native Computing Foundation] via YouTube