You can secure your containerized microservices without slowing down development. Through a combination of Linux kernel features and open source tools, you can isolate the host from the container and the containers from each other, as well as finding vulnerabilities and securing data. Two of Red Hat's Docker contributors will discuss the state of container security today, covering Linux namespaces, SElinux, cgroups, capabilities, scan, seccomp, and other tools you can use right now.
The number and types of workloads with stateful data that can be run
in containers is expanding, resulting in a growing need for persistent storage. But up until now persistent storage models for containers have required a lot of manual and inconsistent intervention due to relatively immature implementations. There are a handful
of storage drivers and plug-ins available today that enable Docker-driven provisioning and management of persistent data volumes.
In this session and demo you will learn how to to:
Deploy persistent storage for databases, CI/CD, big data, & many other workloads
Provision storage on demand