Over the past few years, more and more companies are turning to containerized environments to scale their applications.
However, keeping containers secure throughout the development life cycle presents many challenges to security and development teams. In order to address them, organizations need to adopt a new set of security processes and tools.
This session will focus on the three most vulnerable areas of container security and the best practices to help teams develop and deploy securely.
Join Jeffrey Martin, Senior Director of Product at WhiteSource, as he discusses:
The top challenges to security in containerized environments
How DevSecOps addresses security in containerized environments
Tips and tricks for successfully incorporating security into the container lifecycle
Crypto Cloud Review - How To Earn Up To $500 Per DAY Of Bitcoin 100% On AutoP...
Barriers to Container Security and How to Overcome Them
1. 1
Barriers to Container Security
and How to Overcome Them
How to approach security when most of your
software comes from the community
Jeffrey Martin
Senior Director of Product at WhiteSource
4. 4
LET’S START WITH THE OBVIOUS QUESTIONS
▪ Do you use a private registry?
▪ When using a public registry, are the images signed?
▪ Are you running the containers with a root user?
5. THE CHALLENGES OF OPEN SOURCE USAGE
Reported Vulnerabilities
Are Rising
Less Time To Fix
9. 9
THE EARLIER, THE CHEAPER AND EASIER TO FIX
Coding
$80/Defect
Build
$240/Defect
QA & Security
$960/Defect
Production
$7,600/Defect
The cost of fixing security and quality issues is rising significantly, as the development cycle advances.
10. 10
66% of companies have already implemented application testing during or even pre-build stage.
In what stage of the SDLC do you spend most of your time implementing security
measures?
HOW ARE OTHER COMPANIES HANDLING IT?