Cohesive Networks - Ensuring a secure foundation for your AWS Containers
Chris Swan - AWS London Loft
29 September 2015
AWS has a few ways to run Docker - Elastic Container Service, Elastic Beanstalk or installing Docker into EC2 instances. Whichever you choose Docker makes it easy to build and ship software, so how do you make sure you're building on secure foundations and shipping without known vulnerabilities? Research has shown that many DockerHub images carry vulnerable software; how much of a problem is this for your usage pattern? It’s also possible to build your own images ‘FROM scratch’, what are the pros and cons of doing that? The Docker security benchmark contains recommendations on image contents (amongst many other sensible suggestions), how easy is it to comply with?