Containers are the most sought after development tool for microservices. Their simplicity and portability allow DevOps to create true agile builds within development cycles. However, this new kind of environment brings a new set of security threats at every phase of this cycle - from unvalidated software entering the environment, to secrets being leaked, to runtime drifting and breaking immutable behaviors. This session outlines common security risks and practical use cases across every phase in order to help security teams better understand how to efficiently manage security at the speed and scale of DevOps.
Qualys Talk at Microsoft Ignite Booth 1737 - September 24-28, 2018
Qualys Container Security – Visibility and Security for Containers from Build to Deployments
Hari Srinivasan, Director of Product Management, Qualys
Identify the basic container concepts needed to understand the deployment and management of Qualys Container Sensors. Get an overview of basic container concepts and terminology: Image, Registry, Container, Docker Host, Docker File,OS Virtualization, Qualys Container Sensor, Orchestration tools and Container Deployment types
Get an overview of the "Key Uses" of the Container Security application: 1) Visibility into container projects, 2) Secure the CI/CD Integration , 3) Registry Scanning, and 4) Container Runtime Security.