Loading…
June 26-27, 2024 | Seattle, WA
View More Details | Registration Information

The Sched app allows you to build your schedule but is not a substitute for your event registration. You must be registered for CloudNativeSecurityCon North America 2024 to participate in these sessions. If you have not registered but would like to join us, please go to the event registration page to purchase a registration.

Please note: This schedule is automatically displayed in Pacific Daylight Time (PDT), UTC -7. To see the schedule in your preferred timezone, please select from the drop-down menu to the right, above "Filter by Date."

The schedule is subject to change.
← Back to schedule
End-to-End Encryption for Container Checkpointing in Kubernetes - Radostin Stoyanov, University of Oxford
Thursday June 27, 2024 2:45pm - 3:20pm PDT
447
Container checkpointing is an important feature that has been enabled in many container engines (e.g., Docker, Podman, CRI-O, containerd), and more recently in orchestration systems like Kubernetes. Checkpointing is particularly useful from a security perspective as it allows to transparently save important information about the runtime state of containers. This state, for example, can be used for analyzing security incidents and examining the processes, open files, and network connections within a container at a particular point in time. However, checkpoint data can also lead to serious information leakage. Container checkpoints include a snapshot of the raw application memory, which might contain confidential or sensitive data that should not be exposed to unauthorized users. In this talk, we are going to discuss the security risks, best practices and how to enable end-to-end encryption for container checkpoints in Kubernetes.
Speakers
avatar for Radostin Stoyanov

Radostin Stoyanov

University of Oxford, PhD student, University of Oxford
Radostin Stoyanov is a PhD student at the Scientific Computing research group at the University of Oxford, and a Software Engineer at the Core Kernel Team at Red Hat. His research focuses on improving the resilience and performance of HPC and cloud computing systems.
E2E Encryption for Container Checkpointing in Kubernetes pdf
Thursday June 27, 2024 2:45pm - 3:20pm PDT
447
  Supply Chains + Containers + Application Security
Feedback form is now closed.

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Tweet Share
Share Modal

Share this link via

Or copy link