Loading…
SnykCon 2020 has ended
Back To Schedule
Wednesday, October 21 • 18:55 - 19:25
Building safer containers with Snyk

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Feedback form is now closed.
What does “developer-focused” container security look like and how can it change both how you create and run containers?

In this session, we’ll look at container image security from the builder’s perspective, going beyond simply uncovering vulnerabilities to coming up with a practical, repeatable approach to fixing them. Along the way, we’ll show you how to think about some common questions like:
  • Which vulnerabilities, out of the 10s or 100s you might find in a container, should developers focus on? How does your team identify and prioritize your efforts to reduce risk?
  • Where in the software lifecycle should you scan container images?
  • How do you turn common container image best practices into real-world policies you can use to inspect, educate, and enforce with application teams?

We’ll also demonstrate how Snyk Container fits in at various points in the development lifecycle including CI/CD, Kubernetes clusters, and popular cloud registries.

Takeaways

Attendees should leave this session with a strategy to reduce the number of container image vulnerabilities in their environment:
  • How do you logically assess a list of container vulnerabilities in the context of how container images work?
  • How do you reduce the number of vulnerabilities in your container images? Should you be aiming for zero vulnerabilities? And if not (spoiler alert!), how do you prioritize what should be fixed?

The strategies are general enough to apply no matter what tools you might use for container scanning, but we will show you specifically how Snyk Container fits into this strategy.

Consider this session to be the container security overview, where we will talk about the technology and strategy for fixing container issues. In the Patterns for secure container base image management session we’ll go deeper on the people & process; and, for teams using Docker Desktop and Docker Hub, we’ll cover details of our integrated tools in the Snyk & Docker team up to improve container images security session.

Speakers
avatar for Jim Armstrong

Jim Armstrong

Product Marketing - Container & IaC, Snyk


Wednesday October 21, 2020 18:55 - 19:25 BST
Product Track