First meetup of 2015! Docker Security

Agenda

18:00 - Drinks and Pizza

19:00 - Talks begin

21:30 - Hit the infamous Schuberg-philis bar!

Dockers!

We've just about calmed down after DockerCon Europe and we hope that you have too, but before you all sign off for some Christmas fun, stick January 22nd in your calendar.

We figured that after Docker's meteoric rise in 2014, we needed to start looking at some of the more hotly debated issues surrounding Docker and container technologies in general, and of course, we ended up at security.

A serious topic, but don't worry, we'll still have the hiring-game, the-hug-a-new-comer game, t-shirt throwing, pizza and of course beer. :-)

Lastly,for anyone who has never been to Schuberg-Philis before, their building is AMAZING. Don't miss this one.

Speakers

Mike Wessling - Lead Nerd @ BitBrains - "Falling off the shoulders of giants"

The lessons unlearned by Docker and similar schemes. I argue that although the idea of shippable containers of software is attractive, especially from a developer point of view, Docker is trying to re-solve many issues encountered and solved by others. A fresh approach is always welcome but don’t ignore the past and don’t ignore the hard problems.

About Mike Wessling: Mike is interested in technology and humans and their interactions. He believes that computers can be programmed and humans can be motivated; trying it the other way around is a source of endless frustration. He has been involved in designing, building, running and troubleshooting of many different types of environments; from Internet backbones and ISPs to delivery pipelines for cranky applications with even crankier real life data. Recently he has been looking at scaling organisations without losing the freedom and trust. In his spare time he builds flamethrowers and big metal beasts.

Michael Boelen - Founder CISOfy - "Docker Security: Are your containers tightly secured to the ship?"

We already know Docker is providing us with new opportunities and definitely changing the IT landscape. Unfortunately the security risks involved with new technologies are often overlooked. Michael will address some security concerns, and related measures, around Docker. We will learn how Docker uses Linux container technology, built-in security controls, and how it builds on top of that. Next we address a little bit of history and how it matters to running our containers properly. To finish, we have a look at the steps we can take ourselves, with a small glance into the future.

About Michael Boelen: Michael has a special interest in Unix/Linux security and IT auditing. With new technologies like Docker on the rise, he likes to investigate how they can be used in a secure fashion. With his company CISOfy, he supports the development of an open source auditing tool Lynis [ https://cisofy.com/lynis/ ]. The tool helps companies keeping their systems secure and provides best practices. Currently he is developing auditing rules for Docker, to keep your systems safe.

Adrian Mouat - Chief Scientist at Container Solutions - "Provenance in Docker - how do you know what's in that image?"

To date, most of the security discussion around containers has centred around how “contained” they are; can a malicious user break out of a container and gain access to the host? Whilst undoubtedly important, it has overshadowed another concern – why should I trust the code (or data) in a container at all? If it wasn’t me, how do I know for sure who built it? In this talk I'll outliine the issues around the provenance of images and describe some steps we can take to improve our trust in them.

About Adrian Mouat: Adrian is Chief Scientist at Container Solutions. He is currently writing a book for O'Reilly Media entitled "Using Docker: Developing and Deploying Software with Containers". Adrian has been a professional software developer for over 10 years, working on a wide range of projects from small webapps to large data mining platforms.