Securing the Lids on Containers in the Cloud · Securing the Lids on Containers in the Cloud...

SecuringtheLidsonContainersintheCloud

RaymondLay10th April2017

HelloMotto

WHYContainerTechnology

HOWSecureisit

WHATelsetoconsider

WHYContainerTechnology

SoftwareDesignEvolution…

FromMonolithic

ToMicroservices

FastDeployment,Efficientscaling,

DesignAutonomy

FromPhysicalServers

ToVMsToContainers

Speed&Scale

• MoreAgile• DeliverFaster• Better@Packaging&

Deployment• LowerResource

Constraint

HowSecureisContainerTechnology

IsContainerTechnologyInherentlyMORESecure

• NamespacesprovideIsolation• IsolateApplicationsfromHost• IsolateApplicationsfromeachother

• Cgroups provideresourcelimiting(CPU,Memoryetc)• ReducingSurfaceAreaoftheHost(Access)• ImprovedSecuritythroughrestrictingcapabilities• EncourageadoptionofPrinciplesofLeastPrivileges• Applicationspackageincontainersare“usually”moresecure

• Relianceonkernelfeaturestoisolateandcontrolresources• Assumethatcontainer(containedprocesses)areworkingas

intendedandthecodesdeployedaresecure• TheunderlyingOSiswell-secured(hardenedappropriately)• Securitypatcheshavebeenintegratedintodeployment

Itdepends…

WhatelsetoConsider

DevilintheDetails…

• HostLevel“RootAccess”• HostLevelProtection• ContainerSecurity– Codes&Ownership• VulnerabilityAssessments• Orchestration,Scalability&PatchManagement• Deploymentwith/withoutVMs

Container

Application

OtherContainers

UnderlyingOS

EXTERNALTHREATS

Threats&Defenses

Cgroups

Namespaces

CodeReviews

TraditionalDefenses Namespaces

KEYTAKEAWAYS

• ContainerTechnologycanprovideSpeed,Scale&Security

• TraditionalInfoSecapproachstillapplies- CIA

• Defaults<>Deployed

Securing the Lids on Containers in the Cloud · Securing the Lids on Containers in the Cloud...

Documents

Transcript of Securing the Lids on Containers in the Cloud · Securing the Lids on Containers in the Cloud...

FOAM CUPS, CONTAINERS & LIDS - US Foods...CUPS CORRESPONDING LIDS APN Product Description Pack Size APN Product Description Pack Size 0765057 6 oz. White Foam Cup 20/50 ea. 0765032

FOLIO TARIFF PRODUCT DESCRIPTION CLASSIFICATION … · 2020. 2. 6. · stretch wrap, pouches, toys, covers, lids, pipes, buckets and containers, covering of cables. HS 3920.10.20

RECYCLING SERVICES€¦ · Clean Paper, Magazines, Newspaper, Cardboard, Junk Mail Glass Bottles & Jars (Even broken) Empty Plastic Bottles, Rigid Plastic Containers (Lids should

CARTONBOARD FOIL & LIDS FOAM CLAMS ......FOAM CLAMS SUSTAINABLE & LIDS PLASTIC & LIDS PLASTIC HINGED containers Plain Pizza Boxes Corrugated white board design ensuring rigidity. Code

STORAGE CONTAINERS - Polycarbonate · • Lids are tight-fitting • Perfect for food storage and portion control, completely stackable, extremely durable and long lasting • Dishwasher

Securing the network for VMs or Containers

JUNE 2015 - Chinatown · •Plastic such as: containers, hard plastic, plastic cups, lids, bottles, plastic pails, buckets and garden pots. ... •Plastic bags •Styrofoam •Food

WHAT GOES WHERE? · Aluminum, Glass, Plastics Aluminium cans (pop cans) Beverage glass bottles Bottle caps and metal jar lids Clamshell food containers Coffee cup lids (no black lids)

CHILLIWACK CURBSIDE QUICK-REFERENCE GUIDE...Other containers okay with Empty and rinse containers. Remove lids and place in mixed recycling. Extra cans/bags require No loose pet waste,

MOLDED FIBER CONTAINERS & LIDS - RJ Schinner€¦ · Inno-Pak, LLC • 1.800.INNOPAK • MOLDED FIBER CONTAINERS & LIDS 1/1 CUSTOM PRINT PROGRAM ITEMS u Containers are available in

),B$ HBb,B W[...b ; H# HBb Bb[ #NG=N 1 =8S#8 JN HINGED CONTAINERS TWO-PIECE CONTAINERS BOWLS & LIDS PAPER & ALUMINUM CONTAINERS WS1 Jg WGN ] 1# N G / #8 BAGS PIZZA BOXES FAMILY SIZE

Containers and Kubernetes Put a Lid on It: Securing for ... · Put a Lid on It: Securing Containers and Kubernetes on vSphere and AWS Steve Hoenisch, VMware, Inc. Nolan Karpinski,

1igroup.com€¦ · 18-FACURU 18-FACURU 550 C U C US P SUBCATEGORY_2 CUPS PAPER CUPS & LIDS CUPS & LIDS CUTLERY DINNERWARE NAPKINS & DISPENSERS PARTY SUPPLIES FOOD STORAGE & CONTAINERS

e Recycling Guide - Federal Way RULES AND DISPOSAL ALTERNATIVES ... lids, aluminum foil, foil trays, oil containers, paint cans with hardened paint ... blister packaging

Vacuum Sterilization Containers, Lids, Baskets & Accessories · 2017-01-20 · Vacuum Sterilization Containers, Lids, Baskets & Accessories 2 Integra ® Miltex ® Sterilization Containers

COMMINGLED MATERIALS (CONTAINERS, CANS, AND BOTTLES) · (CONTAINERS, CANS, AND BOTTLES) Empty non-hazardous aerosol cans Aluminum cans & foil products Plastic containers, lids, &

Securing Containers on the High Seas (OWASP Belgium … · 2020-05-04 · Securing Containers on the High Seas Jack Mannino @ OWASP Belgium September 2018. ... (container & cluster-level)

on deck stowage of containers - AIMU Papers Available Online · PDF fileStowage of Containers on Barges 15 Cargo Securing Manuals 17 Operational Issues 18 Comments and Recommendations

ORGA-LINE and AMBIA-LINE - Baer Supply with ORGA-LINE. Items like pots and pans or plastic containers can be stored with their lids in one drawer, and the lids are always easy to find.

Bulk Display Containerscrc.frontiercoop.com/sellsheets/FB-SS-Bulk-Display-Containers.pdf · Lids (to fit jars/containers above) Pourable Lids, Green (Item #) N/A 19203 ($0.40/each)