HF 2021 - Call for Papers

Defenders Guide to the Container Ecosystem
2021-11-19, 09:00–11:00, Sponsors - Workshops
Language: English

Docker is one of the trending technologies that rules the IT ecosystem.
Many companies have started to adapt the usage of docker in their companies. While Docker offers a high level of scalability and portability, security can fall into the sidelines.Like many other technologies, it is not safe by default. We have to take certain steps to make sure that the docker deployment is safe and secure.

This workshop introduces the attendees to docker basics, discuss various security problems in the default configuration and also discuss the various defense mechanisms.


This is a practical, hands-on workshop.The attendees will be introduced from the basics of the docker to the advanced Security Implementation like Image signing.To make sure all the attendees learn the concepts well, there will be challenges at the end of the few scenarios

All the tools and techniques discussed in the workshop will be open-source and the attendees can directly implement them in their environment right away.Also the attendees will be provided with references resources which they can refer after the workshop to get deeper understanding

Targeted Audience
- Developers
- Blue team
- Anyone who is interested in Docker security

Attendees Takeaway
- Understand the Basics of Docker
- Know the real-world threat and flaws in the default configuration
- Secure the common misconfiguration

Prerequisite
- Working Internet Connection and Latest browser
- All the attendees will be provided Cloud Lab environment to practise hands on

Attendees will be provided with
- Lab

Topics Covered:
- Introduction to Docker (15 mins)
- Hands-on: Getting started with Docker (30mins)
- Pulling an image
- Running the container
- Building a Docker image
- Docker security threat Landscape (5 mins)
- Hands-on: Writing secure Dockerfiles(10 mins)
- Hands-on: Securing Docker Images(10 mins)
- Hands-on: Docker runtime security
- Seccomp(10 mins)
- Apparmor(10 mins)
- Resource management(10 mins)
- Hands-on: Auditing Docker images(10 mins)
- Conclusion and QA(10 mins)


Are you releasing a tool? – no Have this talk already be given? – yes

Joshua Jebaraj is Creator of GCP-Goat. He is an active member of many open-source communities like Null, Ansible and Hashicorp .He frequently speaks at null Chennai chapter and OWASP Vit Chennai .He also Spoken at conferences like Defcon,Owasp-Seasides,Bsides-Delhi and Open-Security-Summit