Name: In a Container, Nobody Hears Your Screams: Next Generation Process Isolation - Andrew Martin, ControlPlane
Start: 2020-08-19T13:45:00+0200
End: 2020-08-19T14:20:00+0200

Virtual Event
August 17–August 20, 2020
Learn More and Register to Attend This Event

The Sched app allows you to build your schedule but is not a substitute for your event registration. You must be registered for KubeCon + CloudNativeCon Europe 2020 - Virtual to participate in the sessions. If you have not registered but would like to join us, please register here.

Please note: This schedule is automatically displayed in Central European Summer Time (CEST). To see the schedule in your preferred timezone, please select from the drop-down menu to the right, above "Filter by Date." The schedule is subject to change.

Back To Schedule

In a Container, Nobody Hears Your Screams: Next Generation Process Isolation - Andrew Martin, ControlPlane

Feedback form is now closed.

Is it ever safe to run untrusted code in containers? Should process isolation keep workloads in, or attackers out? What would it take to run a malware test lab in Kubernetes?

With fast startup times and consistent execution environments containers beat traditionally slow, monolithic VMs -- but with the advancement of micro VMs the boundaries have become blurred. It is increasingly difficult to know which isolation technology to choose for our next application. Can we run different workloads in different “container” types -- on the same cluster?

In this talk we:
- examine the history of trying to safely run unsafe processes
- compare and contrast the emerging generation of process isolation and security techniques
- rationalise the design decisions that drive each project
- demo how to break in, out, and learn about what workloads are best suited to run in each technology

Speakers

Andrew Martin

CEO, ControlPlane

Andrew has an incisive security engineering ethos gained building and destroying high-traffic web applications. Proficient in systems development, testing, and operations, he is at his happiest profiling and securing every tier of a cloud native system, and has battle-hardened experience... Read More →

ControlPlane Next Generation Process Isolation (Kubecon, July 2020) pdf

Close Captioning Transcript KDRL 2654 txt

Wednesday August 19, 2020 13:45 - 14:20 CEST
InXpo https://onlinexperiences.com/Launch/Event.htm?ShowKey99259

Security + Identity + Policy

Content Experience Level Intermediate (Mid-level experience)
Link to Video Recording https://youtu.be/NQrs1mpfDNc

KubeCon + CloudNativeCon Europe 2020

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Andrew Martin