Container Security Mmanagement

•

1 j'aime•33 vues

Docker containers are the most popular containerisation technology. Used properly can increase level of security (in comparison to running application directly on the host). On the other hand some misconfigurations can lead to downgrade level of security or even introduce new vulnerabilities.

Technologie

Container Security Management
Suresh Rupasinghe
Associate Tech Lead - WSO2

What is a Container?
A standardized unit of software
● Lightweight
● Standalone
Cloud Native Security
Container Runtimes:
● Docker
● rkt

Comparing Containers and Virtual Machines
Container Virtual Machine

What is Kubernetes?
K8s is an open-source system
for automating deployment,
scaling, and management of
containerized applications.
Cloud Native Security

Traditional Approach vs. Modern Application Approach
Cloud Native Security

Containers & K8s Attack Vectors
Poisoned ImagesKernel Attack Denial of Service
Cloud Native Security
Container Breakouts Sniﬃng Secrets

The Attack Kill Chain
1. Recon
2. Weaponization
3. Delivery
4. Exploitation
5. Installation
6. Command & Control
7. Exﬁltration
Cloud Native Security

Recent Attacks…!!!
Cloud Native Security

Container Security Stack
Container Security
Infrastructure
Pod Security Policies
Network Filtering
Secrets Management
Build
Code Analysis
Image Scanning
Deployment Check
Runtime
Anomaly Detection
Forensics
Run-Time Vulnerability Scanning
Cloud Native Security

Securing CI/CD Pipeline
Cloud Native Security
Docker
Hub

Sample Dockerﬁle & K8s Deployment ﬁle
Cloud Native Security

Securing CI/CD Pipeline
1. Image Scanning
● Clair by CoreOS
● Anchore
2. Code Analysis
3. Deployment Checks
● Kubesec.io
Cloud Native SecurityCloud Native Security

Infrastructure Layer Security
1. Pod Security Policies
● Kubernetes Pod Security Policy
Advisor
2. Network Filtering
● Cilium
Cloud Native SecurityCloud Native Security

Run-time Security
1. Anomalous Behavior Detection
■ Falco
2. Runtime Vulnerability Scanning
3. Security Auditing
Cloud Native Security

OWASP Best Practices
RULE #0 - Keep Host and Docker up to date
RULE #1 - Do not expose the Docker daemon socket
RULE #2 - Set a user
RULE #3 - Limit capabilities (Grant only specific capabilities,
needed by a container)
RULE #4 - Add –no-new-privileges flag
Cloud Native Security

OWASP Best Practices -
RULE #5 - Disable inter-container communication (--icc=false)
RULE #6- Use Linux Security Module (seccomp, AppArmor, or SELinux)
RULE #7 - Limit resources (memory, CPU, file descriptors, processes, restarts)
RULE #8 - Set filesystem and volumes to read-only
RULE #9 - Use static analysis tools
RULE #10 - Set the logging level to at least INFO
Cloud Native Security

Secret Management
Kubernetes Level
● Kubernetes secret
● HashiCorp Vault
Source Code Level
● Helm Secrets
● Sealed Secrets
Cloud Native Security

References:
● https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html#rule-1---do-n
ot-expose-the-docker-daemon-socket-even-to-the-containers
● https://www.youtube.com/channel/UCvqbFHwN-nwalWPjPUKpvTA
● https://istio.io/
● https://www.youtube.com/watch?v=Jbqxsli2tRw
● https://www.youtube.com/watch?v=15bsTualHnA
● https://www.youtube.com/watch?v=Uocf67aD5QQ
● https://www.openpolicyagent.org/
● https://spiffe.io/

Contenu connexe

Tendances

All Your Containers Are Belong To Us

Lacework

Security threats with Kubernetes - Igor Khoroshchenko

Kuberton

Stop disabling SELinux!

Maciej Lasyk

Kali presentation

Zain Ul abadin

Secure and Simple Sandboxing in SELinux

James Morris

DerbyCon 2019: Prepare to be Boarded! A Tale of Kubernetes, Plunder, and Cryp...

Lacework

(03 2013) guide to kali linux

julius77

Kali Linux - Falconer

Tony Godfrey

Containers and Microservices have radically changed how you get visibility into your applications. As developers have started to leverage orchestration systems on top of containers, the game is changing yet again. What was a simple application on a host before is now a sophisticated, dynamically orchestrated, multi-container architecture. It’s amazing for development - but introduces a whole new set of challenges for monitoring and visibility. In this talk we’ll lay out five key principles for monitoring microservices and the containers they are based on. These principles take into account the operational difference of containers and microservices when compared to traditional architectures. This talk is for the operator that needs to help development teams understand how visibility of apps has changed, and help teams implement these ideas. You’ll walk away with a good understanding of the challenges of monitoring microservices and how you can set your team up for success.

Principles of Monitoring Microservices

Michael Ducy

Monitoring & Securing Microservices in Kubernetes

Michael Ducy

With the growing popularity of Container technology comes the growth of container-based attacks – but understanding your security needs will keep you ahead of the game. Container adoption is skyrocketing, growing 40% in the last year. And it makes sense – the agility, operational efficiencies and cost savings of containerized environments are huge benefits. But as more organizations rush to leverage containers, security is increasingly becoming a major concern and is the top roadblock to container deployment. What do you need to know (and do) to keep your container environments safe?

Are Your Containers as Secure as You Think?

DevOps.com

penetration test using Kali linux ppt

AbhayNaik8

Anatomy of a Cloud Hack

NotSoSecure Global Services

What is Google Cloud Good For at DevFestInspire 2021

Robert John

Lacework | Top 10 Cloud Security Threats

Lacework

Cloud Security Hardening та аудит хмарної безпеки за допомогою Scout Suite

OWASP Kyiv

Malware Collection and Analysis via Hardware Virtualization

Tamas K Lengyel

Kubernetes - Security Journey

Jerry Jalava

(** Cyber Security Course: https://www.edureka.co/cybersecurity-certification-training **) This ‘Parrot Security OS’ PPT by Edureka will help you learn all about one of the topmost Linux distribution for ethical hacking – Parrot Security OS. Below is the list of topics covered in this session: Linux Distributions for Ethical Hacking Parrot Security OS Kali Linux vs Parrot Security OS How to install Parrot Security? Parrot Security OS Tools Cyber Security Playlist: https://bit.ly/2N2jlNN Cyber Security Blog Series: https://bit.ly/2AuULkP Instagram: https://www.instagram.com/edureka_lea... Facebook: https://www.facebook.com/edurekaIN/ Twitter: https://twitter.com/edurekain LinkedIn: https://www.linkedin.com/company/edureka

Parrot Security OS | Introduction to Parrot Security OS | Cybersecurity Train...

Edureka!

Shamsa altayer 10bg kali linux

shamsaot

Tendances (20)

All Your Containers Are Belong To Us

Security threats with Kubernetes - Igor Khoroshchenko

Stop disabling SELinux!

Kali presentation

Secure and Simple Sandboxing in SELinux

DerbyCon 2019: Prepare to be Boarded! A Tale of Kubernetes, Plunder, and Cryp...

(03 2013) guide to kali linux

Kali Linux - Falconer

Principles of Monitoring Microservices

Monitoring & Securing Microservices in Kubernetes

Are Your Containers as Secure as You Think?

penetration test using Kali linux ppt

Anatomy of a Cloud Hack

What is Google Cloud Good For at DevFestInspire 2021

Lacework | Top 10 Cloud Security Threats

Cloud Security Hardening та аудит хмарної безпеки за допомогою Scout Suite

Malware Collection and Analysis via Hardware Virtualization

Kubernetes - Security Journey

Parrot Security OS | Introduction to Parrot Security OS | Cybersecurity Train...

Shamsa altayer 10bg kali linux

Similaire à Container Security Mmanagement

Presented by Tim Mackey, Senior Technology Evangelist, Black Duck Software on August 17. To use containers safely, you need to be aware of potential security issues and the tools you need for securing container-based systems. Secure production use of containers requires an understanding of how attackers might seek to compromise the container, and what you should be aware of to minimize that potential risk. Tim Mackey, Senior Technical Evangelist at Black Duck Software, provides guidance for developing container security policies and procedures around threats such as: 1. Network security 2. Access control 3. Tamper management and trust 4. Denial of service and SLAs 5. Vulnerabilities Register today to learn about the biggest security challenges you face when deploying containers, and how you can effectively deal with those threats. Watch the webinar on BrightTalk: http://bit.ly/2bpdswg

5 Ways to Secure Your Containers for Docker and Beyond

Black Duck by Synopsys

Andy has made mistakes. He's seen even more. And in this talk he details the best and the worst of the container and Kubernetes security problems he's experienced, exploited, and remediated. This talk details low level exploitable issues with container and Kubernetes deployments. We focus on lessons learned, and show attendees how to ensure that they do not fall victim to avoidable attacks. See how to bypass security controls and exploit insecure defaults in this technical appraisal of the container and cluster security landscape.

The Future of Security and Productivity in Our Newly Remote World

DevOps.com

Operations seeking to make their apps and APIs both performant and available to their users must bake effective application security tooling into their processes and infrastructure configurations. How can development and operations teams release at increasing velocity with app protection built into their CI/CD pipeline? A true next-generation, holistic web application and API protection platform does just that: operations teams can integrate security into their workflows and ensure new infrastructure and app code released to production is both effective and secure in any environment from cloud using containers to datacenters to a hybrid of these. Join application security expert Aneel Dadani from Signal Sciences to learn how your team can automate, deploy at scale safely while gaining layer 7 visibility in production environments. Attendees will learn: What constitutes effective application security within the context of cloud adoption and an ever expanding threat landscape How development teams can gain visibility into how their apps and APIs are being used in production and what vulnerabilities may exist that they overlooked How DevOps teams can scale their application footprint to meet demand while securing your codebase in production How to inspect request traffic at the API gateway or the ingress

Automate Your Container Deployments Securely

DevOps.com

On Tuesday, June 22nd Jonny Griffin, Security Engineer at Working Group Two, gave a presentation at a three day conference at GSMA FASG. In the last three years, Working Group Two has been developing a DevSecOps framework to ensure their cloud-native mobile core network is secure. Automating Cloud Security introduces the topics around cloud computing, DevSecOps, cloud-native Security Layers, and how WG2 built a security tool chain that can be leveraged by any organisation. As security is evolving so is WG2's capabilities for identifying, preventing, and responding to security events in our networks.

Automating cloud security - Jonny Griffin

Jonnathan Griffin

Docker Security and Content Trust

ehazlett

Containers and workload security an overview

Krishna-Kumar

There’s a constant rise of the container usage in the existing cloud ecosystem. Most companies are evaluating how to migrate to newer, flexible and automated platform for content and application delivery. The containers are building themselves alone across the business, but who's securing them? This presentation discusses the evolution of infrastructure solutions from servers to containers, how can they be secured. What opensource security options are available today? Where is the future leading towards container security? What will come after containers?

Applied Security for Containers, OW2con'18, June 7-8, 2018, Paris

OW2

Santander DevopsandCloudDays 2021 - Hardening containers.pdf

Juan Vicente Herrera Ruiz de Alejo

Docker Containers Security

Stephane Woillez

Dockers zero to hero

Nicolas De Loof

AWS live hack: Docker + Snyk Container on AWS

Eric Smalling

SW Docker Security

Stephane Woillez

Containers have had an incredibly large adoption rate since Docker was launched, especially from the developer community, as it provides an easy way to package, ship, and run applications. Securing your container-based application is now becoming a critical issue as applications move from development into production. In this session, you learn ways to implement storing secrets, distributing AWS privileges using IAM roles, protecting your container-based applications with vulnerability scans of container images, and incorporating automated checks into your continuous delivery workflow.

AWS re:Invent 2016: Securing Container-Based Applications (CON402)

Amazon Web Services

AWS re:Invent 2016: Securing Container-Based Applications (CON402)

Amazon Web Services

Michael Wardrop, Netflix Usage of containers has undergone rapid growth at Netflix and it is still accelerating. Our container story started organically with developers downloading Docker and using it to improve their developer experience. The first production workloads were simple batch jobs, pioneering micro-services followed, then status as a first class platform running critical workloads. As the types of workloads changed and their importance increased, the security of our container ecosystem needed to evolve and adapt. This session will cover some security theory, architecture, along with practical considerations, and lessons we learnt along the way.

DCSF19 Container Security: Theory & Practice at Netflix

Docker, Inc.

Lions, Tigers and Deers: What building zoos can teach us about securing micro...

Sysdig

As presented at OpenShift Commons Sept 8, 2016. Cyber threats consistently rank as a high priority for data center operators and their reliability teams. As increasingly sophisticated attacks mount, the risk associated with a zero-day attack is significant. Traditional responses include perimeter monitoring and associated network defenses. Since those defenses are reactive to application issues attackers choose to exploit, it’s critical to have visibility into both what is in your container library, but also what the current state of vulnerability activity might be. Current vulnerability information for container images can readily be obtained by using the scan action on Atomic hosts in your OpenShift Container Platform. In this session we’ll cover how an issue becomes a disclosed vulnerability, how to determine the risk associated with your container usage, and potential mitigation patterns you might choose to utilize to limit any potential scope of compromise.

The How and Why of Container Vulnerability Management

Tim Mackey

Presented by Tim Mackey, Senior Technical Evangelist at Black Duck Software on September 8, 2016 with OpenShift Commons. Cyber threats consistently rank as a high priority for data center operators and their reliability teams. As increasingly sophisticated attacks mount, the risk associated with a zero-day attack is significant. Traditional responses include perimeter monitoring and associated network defenses. Since those defenses are reactive to application issues attackers choose to exploit, it’s critical to have visibility into both what is in your container library, but also what the current state of vulnerability activity might be. Current vulnerability information for container images can readily be obtained by using the scan action on Atomic hosts in your OpenShift Container Platform. In this session we’ll cover how an issue becomes a disclosed vulnerability, how to determine the risk associated with your container usage, and potential mitigation patterns you might choose to utilize to limit any potential scope of compromise.

The How and Why of Container Vulnerability Management

Black Duck by Synopsys

EKS security best practices

John Varghese

Presented on September 22, 2016 by Brent Baude, Principle Software Engineer, Atomic and Docker Development, Red Hat; Randy Kilmon, VP, Engineering, Black Duck Organizations are increasingly turning to container environments to meet the demand for faster, more agile software development. But a 2015 study conducted by Forrester Consulting on behalf of Red Hat revealed that 53% of IT operations and development decision makers at global enterprises reported container security concerns as a barrier to adoption. The challenges of managing security risk increase in scope and complexity when hundreds or even thousands of different open source software components and licenses are part of your application code base. Since 2014, more than 6,000 new open source security vulnerabilities have been reported, making it essential to have good visibility into and control over the open source in use in order to understand if any known vulnerabilities are present. In this webinar, experts from Red Hat and Black Duck will share the latest insights and recommendations for securing the open source in your containers, including protecting them from vulnerabilities like Heartbleed, Shellshock and Venom. You’ll learn: • Why container environments present new application security challenges, including those posed by ever-increasing open source use. • How to scan applications running in containers to identify open source in use and map known open source security vulnerabilities. • Best practices and methodologies for deploying secure containers with trust and confidence.

Contain your risk: Deploy secure containers with trust and confidence

Black Duck by Synopsys

Similaire à Container Security Mmanagement (20)

5 Ways to Secure Your Containers for Docker and Beyond

The Future of Security and Productivity in Our Newly Remote World

Automate Your Container Deployments Securely

Automating cloud security - Jonny Griffin

Docker Security and Content Trust

Containers and workload security an overview

Applied Security for Containers, OW2con'18, June 7-8, 2018, Paris

Santander DevopsandCloudDays 2021 - Hardening containers.pdf

Docker Containers Security

Dockers zero to hero

AWS live hack: Docker + Snyk Container on AWS

SW Docker Security

AWS re:Invent 2016: Securing Container-Based Applications (CON402)

DCSF19 Container Security: Theory & Practice at Netflix

Lions, Tigers and Deers: What building zoos can teach us about securing micro...

The How and Why of Container Vulnerability Management

EKS security best practices

Contain your risk: Deploy secure containers with trust and confidence

Dernier

Scaling API-first – The story of a global engineering organization

Radu Cotescu

Boost Fertility New Invention Ups Success Rates.pdf

sudhanshuwaghmare1

Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024

The Digital Insurer

The Good, the Bad and the Governed - Why is governance a dirty word? David O'Neill, Chief Operating Officer - APIContext Apidays New York 2024: The API Economy in the AI Era (April 30 & May 1, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...

apidays

The 7 Things I Know About Cyber Security After 25 Years | April 2024

Rafal Los

The presentation explores the development and application of artificial intelligence (AI) from its inception to its current status in the modern world. The term "artificial intelligence" was first coined by John McCarthy in 1956 to describe efforts to develop computer programs capable of performing tasks that typically require human intelligence. This concept was first introduced at a conference held at Dartmouth College, where programs demonstrated capabilities such as playing chess, proving theorems, and interpreting texts. In the early stages, Alan Turing contributed to the field by defining intelligence as the ability of a being to respond to certain questions intelligently, proposing what is now known as the Turing Test to evaluate the presence of intelligent behavior in machines. As the decades progressed, AI evolved significantly. The 1980s focused on machine learning, teaching computers to learn from data, leading to the development of models that could improve their performance based on their experiences. The 1990s and 2000s saw further advances in algorithms and computational power, which allowed for more sophisticated data analysis techniques, including data mining. By the 2010s, the proliferation of big data and the refinement of deep learning techniques enabled AI to become mainstream. Notable milestones included the success of Google's AlphaGo and advancements in autonomous vehicles by companies like Tesla and Waymo. A major theme of the presentation is the application of generative AI, which has been used for tasks such as natural language text generation, translation, and question answering. Generative AI uses large datasets to train models that can then produce new, coherent pieces of text or other media. The presentation also discusses the ethical implications and the need for regulation in AI, highlighting issues such as privacy, bias, and the potential for misuse. These concerns have prompted calls for comprehensive regulations to ensure the safe and equitable use of AI technologies. Artificial intelligence has also played a significant role in healthcare, particularly highlighted during the COVID-19 pandemic, where it was used in drug discovery, vaccine development, and analyzing the spread of the virus. The capabilities of AI in healthcare are vast, ranging from medical diagnostics to personalized medicine, demonstrating the technology's potential to revolutionize fields beyond just technical or consumer applications. In conclusion, AI continues to be a rapidly evolving field with significant implications for various aspects of society. The development from theoretical concepts to real-world applications illustrates both the potential benefits and the challenges that come with integrating advanced technologies into everyday life. The ongoing discussion about AI ethics and regulation underscores the importance of managing these technologies responsibly to maximize their their benefits while minimizing potential harms.

Artificial Intelligence: Facts and Myths

Joaquim Jorge

2024: Domino Containers - The Next Step. News from the Domino Container commu...

Martijn de Jong

Manulife - Insurer Innovation Award 2024

The Digital Insurer

Increase engagement and revenue with Muvi Live Paywall! In this presentation, we will explore the five key benefits of using Muvi Live Paywall to monetize your live streams. You'll learn how Muvi Live Paywall can help you: Monetize your live content easily: Set up pay-per-view access to your live streams and start generating revenue from your content. Increase audience engagement: Provide exclusive, premium content behind the paywall to keep your viewers engaged. Gain valuable viewer insights: Track viewer data and analytics to better understand your audience and tailor your content accordingly. Reduce content piracy: Muvi Live Paywall's security features help protect your content from unauthorized distribution. Streamline your workflow: The all-in-one platform simplifies the process of managing and monetizing your live streams. With Muvi Live Paywall, you can take control of your live stream monetization and create a sustainable business model for your content. Learn more about Muvi Live Paywall and start generating revenue from your live streams today!

Top 5 Benefits OF Using Muvi Live Paywall For Live Streams

Roshan Dwivedi

Axa Assurance Maroc - Insurer Innovation Award 2024

The Digital Insurer

Effective data discovery is crucial for maintaining compliance and mitigating risks in today's rapidly evolving privacy landscape. However, traditional manual approaches often struggle to keep pace with the growing volume and complexity of data. Join us for an insightful webinar where industry leaders from TrustArc and Privya will share their expertise on leveraging AI-powered solutions to revolutionize data discovery. You'll learn how to: - Effortlessly maintain a comprehensive, up-to-date data inventory - Harness code scanning insights to gain complete visibility into data flows leveraging the advantages of code scanning over DB scanning - Simplify compliance by leveraging Privya's integration with TrustArc - Implement proven strategies to mitigate third-party risks Our panel of experts will discuss real-world case studies and share practical strategies for overcoming common data discovery challenges. They'll also explore the latest trends and innovations in AI-driven data management, and how these technologies can help organizations stay ahead of the curve in an ever-changing privacy landscape.

TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery

TrustArc

Imagine a world where information flows as swiftly as thought itself, making decision-making as fluid as the data driving it. Every moment is critical, and the right tools can significantly boost your organization’s performance. The power of real-time data automation through FME can turn this vision into reality. Aimed at professionals eager to leverage real-time data for enhanced decision-making and efficiency, this webinar will cover the essentials of real-time data and its significance. We’ll explore: FME’s role in real-time event processing, from data intake and analysis to transformation and reporting An overview of leveraging streams vs. automations FME’s impact across various industries highlighted by real-life case studies Live demonstrations on setting up FME workflows for real-time data Practical advice on getting started, best practices, and tips for effective implementation Join us to enhance your skills in real-time data automation with FME, and take your operational capabilities to the next level.

From Event to Action: Accelerate Your Decision Making with Real-Time Automation

Safe Software

Join our latest Connector Corner webinar to discover how UiPath Integration Service revolutionizes API-centric automation in a 'Quote to Cash' process—and how that automation empowers businesses to accelerate revenue generation. A comprehensive demo will explore connecting systems, GenAI, and people, through powerful pre-built connectors designed to speed process cycle times. Speakers: James Dickson, Senior Software Engineer Charlie Greenberg, Host, Product Marketing Manager

Connector Corner: Accelerate revenue generation using UiPath API-centric busi...

DianaGray10

How to Troubleshoot Apps for the Modern Connected Worker

ThousandEyes

Discord is a free app offering voice, video, and text chat functionalities, primarily catering to the gaming community. It serves as a hub for users to create and join servers tailored to their interests. Discord’s ecosystem comprises servers, each functioning as a distinct online community with its own channels dedicated to specific topics or activities. Users can engage in text-based discussions, voice calls, or video chats within these channels. Understanding Discord Servers Discord servers are virtual spaces where users congregate to interact, share content, and build communities. Servers may revolve around gaming, hobbies, interests, or fandoms, providing a platform for like-minded individuals to connect. Communication Features Discord offers a range of communication tools, including text channels for messaging, voice channels for real-time audio conversations, and video channels for face-to-face interactions. These features facilitate seamless communication and collaboration. What Does NSFW Mean? The acronym NSFW stands for “Not Safe For Work,” indicating content that may be inappropriate for professional or public settings. NSFW Content NSFW content encompasses material that is sexually explicit, violent, or otherwise graphic in nature. It often includes nudity, profanity, or depictions of sensitive topics.

Understanding Discord NSFW Servers A Guide for Responsible Users.pdf

UK Journal

Created by Mozilla Research in 2012 and now part of Linux Foundation Europe, the Servo project is an experimental rendering engine written in Rust. It combines memory safety and concurrency to create an independent, modular, and embeddable rendering engine that adheres to web standards. Stewardship of Servo moved from Mozilla Research to the Linux Foundation in 2020, where its mission remains unchanged. After some slow years, in 2023 there has been renewed activity on the project, with a roadmap now focused on improving the engine’s CSS 2 conformance, exploring Android support, and making Servo a practical embeddable rendering engine. In this presentation, Rakhi Sharma reviews the status of the project, our recent developments in 2023, our collaboration with Tauri to make Servo an easy-to-use embeddable rendering engine, and our plans for the future to make Servo an alternative web rendering engine for the embedded devices industry. (c) Embedded Open Source Summit 2024 April 16-18, 2024 Seattle, Washington (US) https://events.linuxfoundation.org/embedded-open-source-summit/ https://ossna2024.sched.com/event/1aBNF/a-year-of-servo-reboot-where-are-we-now-rakhi-sharma-igalia

A Year of the Servo Reboot: Where Are We Now?

Igalia

Three things you will take away from the session: • How to run an effective tenant-to-tenant migration • Best practices for before, during, and after migration • Tips for using migration as a springboard to prepare for Copilot in Microsoft 365 Main ideas: Migration Overview: The presentation covers the current reality of cross-tenant migrations, the triggers, phases, best practices, and benefits of a successful tenant migration Considerations: When considering a migration, it is important to consider the migration scope, performance, customization, flexibility, user-friendly interface, automation, monitoring, support, training, scalability, data integrity, data security, cost, and licensing structure Next Wave: The next wave of change includes the launch of Copilot, which requires businesses to be prepared for upcoming changes related to Copilot and the cloud, and to consolidate data and tighten governance ShareGate: ShareGate can help with pre-migration analysis, configurable migration tool, and automated, end-user driven collaborative governance

Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff

sammart93

Webinar Recording: https://www.panagenda.com/webinars/why-teams-call-analytics-is-critical-to-your-entire-business Nothing is as frustrating and noticeable as being in an important call and being unable to see or hear the other person. Not surprising then, that issues with Teams calls are among the most common problems users call their helpdesk for. Having in depth insight into everything relevant going on at the user’s device, local network, ISP and Microsoft itself during the call is crucial for good Microsoft Teams Call quality support. To ensure a quick and adequate solution and to ensure your users get the most out of their Microsoft 365. But did you know that ‘bad calls’ are also an excellent indicator of other problems arising? Precisely because it is so noticeable!? Like the canary in the mine, bad calls can be early indicators of problems. Problems that might otherwise not have been noticed for a while but can have a big impact on productivity and satisfaction. Join this session by Christoph Adler to learn how true Microsoft Teams call quality analytics helped other organizations troubleshoot bad calls and identify and fix problems that impacted Teams calls or the use of Microsoft365 in general. See what it can do to keep your users happy and productive! In this session we will cover - Why CQD data alone is not enough to troubleshoot call problems - The importance of attributing call problems to the right call participant - What call quality analytics can do to help you quickly find, fix-, and prevent problems - Why having retrospective detailed insights matters - Real life examples of how others have used Microsoft Teams call quality monitoring to problem shoot problems with their ISP, network, device health and more.

Why Teams call analytics are critical to your entire business

panagenda

With more memory available, system performance of three Dell devices increased, which can translate to a better user experience Conclusion When your system has plenty of RAM to meet your needs, you can efficiently access the applications and data you need to finish projects and to-do lists without sacrificing time and focus. Our test results show that with more memory available, three Dell PCs delivered better performance and took less time to complete the Procyon Office Productivity benchmark. These advantages translate to users being able to complete workflows more quickly and multitask more easily. Whether you need the mobility of the Latitude 5440, the creative capabilities of the Precision 3470, or the high performance of the OptiPlex Tower Plus 7010, configuring your system with more RAM can help keep processes running smoothly, enabling you to do more without compromising performance.

Boost PC performance: How more available memory can improve productivity

Principled Technologies

Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...

Neo4j

Dernier (20)

Scaling API-first – The story of a global engineering organization

Boost Fertility New Invention Ups Success Rates.pdf

Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024

Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...

The 7 Things I Know About Cyber Security After 25 Years | April 2024

Artificial Intelligence: Facts and Myths

2024: Domino Containers - The Next Step. News from the Domino Container commu...

Manulife - Insurer Innovation Award 2024

Top 5 Benefits OF Using Muvi Live Paywall For Live Streams

Axa Assurance Maroc - Insurer Innovation Award 2024

TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery

From Event to Action: Accelerate Your Decision Making with Real-Time Automation

Connector Corner: Accelerate revenue generation using UiPath API-centric busi...

How to Troubleshoot Apps for the Modern Connected Worker

Understanding Discord NSFW Servers A Guide for Responsible Users.pdf

A Year of the Servo Reboot: Where Are We Now?

Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff

Why Teams call analytics are critical to your entire business

Boost PC performance: How more available memory can improve productivity

Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...

Container Security Mmanagement

1. Container Security Management Suresh Rupasinghe Associate Tech Lead - WSO2

2. Cloud Native Technologies

3. What is a Container? A standardized unit of software ● Lightweight ● Standalone Cloud Native Security Container Runtimes: ● Docker ● rkt

4. Comparing Containers and Virtual Machines Container Virtual Machine

5. What is Kubernetes? K8s is an open-source system for automating deployment, scaling, and management of containerized applications. Cloud Native Security

6. Traditional Approach vs. Modern Application Approach Cloud Native Security

7. Demo

8. Containers & K8s Attack Vectors Poisoned ImagesKernel Attack Denial of Service Cloud Native Security Container Breakouts Sniﬃng Secrets

9. The Attack Kill Chain 1. Recon 2. Weaponization 3. Delivery 4. Exploitation 5. Installation 6. Command & Control 7. Exﬁltration Cloud Native Security

10. Recent Attacks…!!! Cloud Native Security

11. Container Security Stack Container Security Infrastructure Pod Security Policies Network Filtering Secrets Management Build Code Analysis Image Scanning Deployment Check Runtime Anomaly Detection Forensics Run-Time Vulnerability Scanning Cloud Native Security

12. Securing CI/CD Pipeline

13. Securing CI/CD Pipeline Cloud Native Security Docker Hub

14. Sample Dockerﬁle & K8s Deployment ﬁle Cloud Native Security

15. Securing CI/CD Pipeline 1. Image Scanning ● Clair by CoreOS ● Anchore 2. Code Analysis 3. Deployment Checks ● Kubesec.io Cloud Native SecurityCloud Native Security

16. Infrastructure Layer Security

17. Infrastructure Layer Security 1. Pod Security Policies ● Kubernetes Pod Security Policy Advisor 2. Network Filtering ● Cilium Cloud Native SecurityCloud Native Security

18. Run-time Security

19. Run-time Security 1. Anomalous Behavior Detection ■ Falco 2. Runtime Vulnerability Scanning 3. Security Auditing Cloud Native Security

20. OWASP Best Practices RULE #0 - Keep Host and Docker up to date RULE #1 - Do not expose the Docker daemon socket RULE #2 - Set a user RULE #3 - Limit capabilities (Grant only specific capabilities, needed by a container) RULE #4 - Add –no-new-privileges flag Cloud Native Security

21. OWASP Best Practices - RULE #5 - Disable inter-container communication (--icc=false) RULE #6- Use Linux Security Module (seccomp, AppArmor, or SELinux) RULE #7 - Limit resources (memory, CPU, file descriptors, processes, restarts) RULE #8 - Set filesystem and volumes to read-only RULE #9 - Use static analysis tools RULE #10 - Set the logging level to at least INFO Cloud Native Security

22. Secret Management Kubernetes Level ● Kubernetes secret ● HashiCorp Vault Source Code Level ● Helm Secrets ● Sealed Secrets Cloud Native Security

23. References: ● https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html#rule-1---do-n ot-expose-the-docker-daemon-socket-even-to-the-containers ● https://www.youtube.com/channel/UCvqbFHwN-nwalWPjPUKpvTA ● https://istio.io/ ● https://www.youtube.com/watch?v=Jbqxsli2tRw ● https://www.youtube.com/watch?v=15bsTualHnA ● https://www.youtube.com/watch?v=Uocf67aD5QQ ● https://www.openpolicyagent.org/ ● https://spiffe.io/

24. Q&A

25. THANK YOU

Container Security Mmanagement

Recommandé

Recommandé

Contenu connexe

Tendances

Tendances (20)

Similaire à Container Security Mmanagement

Similaire à Container Security Mmanagement (20)

Dernier

Dernier (20)

Container Security Mmanagement