Name: Establishing Image Provenance and Security in Kubernetes - Adrian Mouat, Container Solutions (Any Skill Level) (Slides Attached)
Start: 2018-05-02T11:55:00+0200
End: 2018-05-02T12:30:00+0200

May 2-4, 2018 - Copenhagen, Denmark
Click Here For Information & Registration

Back To Schedule

Establishing Image Provenance and Security in Kubernetes - Adrian Mouat, Container Solutions (Any Skill Level) (Slides Attached)

Feedback form is now closed.

Take any container running in your Kubernetes cluster. What can you say about it and with what level of certainty? Do you know where it came from? Could an attacker have modified it? Is it up-to-date? Can you identify the exact revision of the code that the image was built from?

This talk will look at what guarantees Kubernetes gives you out-of-the-box, and what you can do to establish a trustworthy and reliable workflow for deploying and updating images. Topics and tooling covered will include:

- building images in a repeatable manner with BuildKit or Bazel
- distributing images through registries
- verifying provenance with secure hashes as well as Notary/TUF

Speakers

Adrian Mouat

Technical Community Advocate, Chainguard

Adrian has been involved with containers from the early days of Docker and authored the O’Reilly book “Using Docker” (https://atlas.oreilly.com/oreillymedia/using-docker). He is currently a product manager for Chainguard where he works on Chainguard Images and the Wolfi Linux... Read More →

ImageProvenanceAndSecurity AdrianMouat pdf

Wednesday May 2, 2018 11:55 - 12:30 CEST
C1-M3

Security+Identity+Signing, Any

Any Skill Level Any
Link to Session Recording https://youtu.be/zs-6YEUrJAM

KubeCon + CloudNativeCon Europe 2018

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Adrian Mouat