Comprehensive Security for the Ever-changing Container Stack

Containers are the most sought after development tool for microservices. Their simplicity and portability allow DevOps to create true agile builds within development cycles. However, this new kind of environment brings a new set of security threats at every phase of this cycle—from unvalidated software entering the environment to running containers drifting and breaking immutable behaviors. This talk outlines how to build security into every phase. Learn about detecting anomalies and preventing security breaches in an extremely agile runtime environment, enabling you to efficiently manage security at the speed and scale of DevOps.

Asif Awan, CTO of Container Security, Qualys

Containers are the most sought after development tool for microservices. Their simplicity and portability allow DevOps to create true agile builds within development cycles. However, this new kind of environment brings a new set of security threats at every phase of this cycle - from unvalidated software entering the environment, to secrets being leaked, to runtime drifting and breaking immutable behaviors. This session outlines common security risks and practical use cases across every phase in order to help security teams better understand how to efficiently manage security at the speed and scale of DevOps.

Qualys Talk at Microsoft Ignite Booth 1737 - September 24-28, 2018

Qualys Container Security – Visibility and Security for Containers from Build to Deployments
Hari Srinivasan, Director of Product Management, Qualys

Identify the basic container concepts needed to understand the deployment and management of Qualys Container Sensors. Get an overview of basic container concepts and terminology: Image, Registry, Container, Docker Host, Qualys Container Sensor.

Get four "Key Uses" of the Container Security application: 1) Visibility into container projects, 2) Detect vulnerabilities in images and containers, 3) Detect rogue containers, and 4) Secure the CI/CD pipeline.

Install a General Sensor on a Linux host running docker. Identify sensor installation requirements, and illustrate the sensor's position/placement within the container framework.