Windows Containers: Architecture, Security, and the Siloscape Vulnerability

Explore the world of Windows containers in this 33-minute CNCF conference talk. Delve into the differences between containers and virtual machines, understand what needs to be contained in Windows environments, and examine the unique aspects of Hyper-V and Server Silos. Learn about root directory objects, access from inside containers, and practical examples. Discover the requirements and implementation of Windows containers, and gain insights into potential security risks, including container escape techniques. Investigate the Siloscape operation, its impact on cloud providers, and the timeline of events. Conclude with a discussion on mitigation strategies and the importance of patching in maintaining container security.

Intro
Agenda
What are Containers?
Containers Virtual Machines
What Needs to be Contained?
And in Windows?
Hyper-V vs Server Silo
Root Directory Object
Access from inside a Container
An Example from a Container
The Requirement
How it is Done
But How?
Container Escape: Game Plan
How Siloscape Operated
Cloud Providers
Timeline
What Could We Do You About It?
The Patch