July 20, 2016

The Cloudcast #260 - Securing Container Workloads

Listen Later

23 minutes

Aaron and Brian talk with Randy Kilmon (VP of Engineering at @black_duck_sw)

about the open source vulnerabilities, securing containers and managing the lifecycle of rapidly changing software.

Show Links:

Get a free book from O'Reilly media or use promo code PCBW for a discount - 40% off Print Books and 50% off eBooks and videos

Black Duck Software Homepage

[blog] 3 Steps to Building Container Security

[blog] Black Duck’s Open Source Security report

Show Notes:

Topic 1 - Welcome to the show. Tell us a little bit about your background and your areas of focus at Black Duck Software.

Topic 2 - For anyone that’s not familiar with Black Duck, what role does Black Duck play in looking at open source licensing vs. actively helping with security and vulnerabilities?

Topic 3 - One of your areas of focus is containers and container security. Obviously containers is top of mind for lots of people. What’s the reality of container security and what are the areas where people should focus their attention?

Topic 4 - Let’s talk about “pre-container” (developers) security vs. “post-container” security (operations). What are the “gates” applications should be going through, and where are people making mistakes today?

Topic 5 - Can we talk about managing security in the container vs. security in the host?

Topic 6 - We have a number of listeners that are going down a journey with containers, either directly (e.g. Docker) or via PaaS platforms (e.g. Cloud Foundry, OpenShift, etc.). What’s your guidance to them?

Feedback?

Email:show at thecloudcast dot net

Twitter:@thecloudcastnet

YouTube:Cloudcast Channel

...more

View all episodes

View all episodes

Download on the App Store

Download on the App Store

Get it on Google Play

The Cloudcast

By Massive Studios

4.6

147147 ratings

July 20, 2016

The Cloudcast #260 - Securing Container Workloads

Listen Later

23 minutes

Aaron and Brian talk with Randy Kilmon (VP of Engineering at @black_duck_sw)

about the open source vulnerabilities, securing containers and managing the lifecycle of rapidly changing software.

Show Links:

Get a free book from O'Reilly media or use promo code PCBW for a discount - 40% off Print Books and 50% off eBooks and videos

Black Duck Software Homepage

[blog] 3 Steps to Building Container Security

[blog] Black Duck’s Open Source Security report

Show Notes:

Topic 1 - Welcome to the show. Tell us a little bit about your background and your areas of focus at Black Duck Software.

Topic 2 - For anyone that’s not familiar with Black Duck, what role does Black Duck play in looking at open source licensing vs. actively helping with security and vulnerabilities?

Topic 3 - One of your areas of focus is containers and container security. Obviously containers is top of mind for lots of people. What’s the reality of container security and what are the areas where people should focus their attention?

Topic 4 - Let’s talk about “pre-container” (developers) security vs. “post-container” security (operations). What are the “gates” applications should be going through, and where are people making mistakes today?

Topic 5 - Can we talk about managing security in the container vs. security in the host?

Topic 6 - We have a number of listeners that are going down a journey with containers, either directly (e.g. Docker) or via PaaS platforms (e.g. Cloud Foundry, OpenShift, etc.). What’s your guidance to them?

Feedback?

Email:show at thecloudcast dot net

Twitter:@thecloudcastnet

YouTube:Cloudcast Channel

...more

More shows like The Cloudcast

Hanselminutes with Scott Hanselman by Scott Hanselman

Hanselminutes with Scott Hanselman

377 Listeners

Software Engineering Radio - the podcast for professional software developers by se-radio@computer.org

Software Engineering Radio - the podcast for professional software developers

272 Listeners

The Changelog: Software Development, Open Source by Changelog Media

The Changelog: Software Development, Open Source

283 Listeners

a16z Podcast by Andreessen Horowitz

a16z Podcast

1,027 Listeners

Thoughtworks Technology Podcast by Thoughtworks

Thoughtworks Technology Podcast

40 Listeners

Talk Python To Me by Michael Kennedy

Talk Python To Me

590 Listeners

Software Engineering Daily by Software Engineering Daily

Software Engineering Daily

622 Listeners

AWS Podcast by Amazon Web Services

AWS Podcast

202 Listeners

Gartner ThinkCast by Gartner

Gartner ThinkCast

112 Listeners

DataFramed by DataCamp

DataFramed

267 Listeners

Kubernetes Podcast from Google by Abdel Sghiouar, Kaslin Fields

Kubernetes Podcast from Google

181 Listeners

Practical AI by Practical AI LLC

Practical AI

192 Listeners

The Stack Overflow Podcast by The Stack Overflow Podcast

The Stack Overflow Podcast

62 Listeners

The Real Python Podcast by Real Python

The Real Python Podcast

139 Listeners

The Pragmatic Engineer by Gergely Orosz

The Pragmatic Engineer

53 Listeners