Container Security & Kubernetes
Hello NYC Kubernauts!
We're happy to announce the March edition of the New York Kubernetes Meetup! This month, we'll be focusing on security.
Michael Cherny from Aqua will speak to the security best practices for a Kubernetes Deployment - from development, through build, ship, networking and run time controls.
Mark Stemm from Sysdig will speak to securing containers on Kubernetes the Sysdig way - using the open-source tool Falco for a behavioral security approach which differs from more traditional image scanning approaches.
Lastly, we'll have Dino from Capsule8 demo some live security attacks against containers running in Kubernetes deployments to illustrate what really needs to be defended against (hint: it isn't always what you may think!).
6:30 - 7:00 - Social
7:00 - 7:45 - Michael Cherny, Aqua Security
7:45 - 8:30 - Mark Stemm, Sysdig
8:30 - 8:40 - Dino Dai Zovi, Capsule8 (Lightning Talk)
8:40 - 9:00 - Social / Wrap-up
Michael Cherny (@chernymi (https://twitter.com/chernymi)) is Head of Security Research at Aqua. He has more than 20 years of experience in the software industry, specializing in security products. Prior to Aqua, he has held senior security research positions at Microsoft, Aorato and Imperva. Michael is a regular speaker at security conferences, among them, BlackHat Europe, RSA Europe and Virus Bulletin.
Mark Stemm (mstemm - GitHub (https://github.com/mstemm)) is a Software Engineer with 20 years experience using data and analysis to solve hard problems and build great products. He has a B.S. in Mathematics/Computer Science from Carnegie Mellon University and a M.S. and Ph.D. in Computer Science from the University of California, Berkeley. He's worked at Fast Forward Networks/Inktomi on the first generation of internet-based live video broadcasting, at Cloudmark building the world's leading email anti-spam platform for ISPs and mobile providers, and at Jut building a streaming data analysis and visualization platform. Mark currently works at Sysdig on the open source product Falco, a behavioral activity monitor with full support for containers.
Dino Dai Zovi (@dinodaizovi (https://twitter.com/dinodaizovi)) is the CTO and Co-founder of Capsule8, Inc. Dino most recently served as the Mobile Security Lead at Square, building out the platform that allows Square to ensure that their sellers’ mobile devices are safe. Dino is a member of the BlackHat Review Board and also a regular speaker at information security conferences around the world including DEFCON, BlackHat and CanSecWest. He is a co-author of the books "The iOS Hacker's Handbook,” “The Mac Hacker’s Handbook” and “The Art of Software Security Testing.” He is best known in the information security community for winning the first PWN2OWN zero-day hacking contest at CanSecWest 2007.