Insecure Containers? Continuous Defense Against Open Source Exploits

speaker: Andrew Martin

Open Source Software underpins the internet and many enterprises, but has repeatedly proven itself vulnerable to accident and tampering. High impact exploits lead us to question our unreserved trust in Open Source, and the wisdom of its proliferation is being questioned. As we fight to continuously secure millions of servers against these waves of attacks, have we found a crucial panacea in containers?

This talk examines the anatomy of major vulnerabilities, demonstrates their applicability to containerised applications, and explores container native security tooling throughout the pipeline.