Overview
This course aims to provide an understanding of Docker, its significance in enabling DevOps practices, and the associated security considerations and solutions. Participants will learn about the history of containers, the benefits of Docker, and the importance of identity management within the Docker ecosystem. The course covers topics such as Docker's security features like Notary, container infrastructure, microservices, and security tools. The teaching method involves a lecture format with insights on Docker's role in DevOps and security practices. This course is intended for security-minded individuals and professionals interested in exploring Docker's potential impact on their company's security practices.
Syllabus
Intro
Stack Engine
Microservices
Container Infrastructure
Amazon
Lessons Learned
Security Tools
Content Trust
RTFM
Infrastructure perspective
Docker as a hypervisor
Docker in a hypervisor
Venom
Docker vs KVM
Code churn
Docker commits
Summary
Opportunity
Security is a bottleneck
Blackbox testing
Reinventing the wheel
Attack yourself
Continuous Delivery
Evolution Not Revolution
Control Access
Taught by
LASCON