Don't miss out! Join us at the next Open Source Summit in Amsterdam, Netherland (August 25-29); Seoul, South Korea (November 4-5). Join us at the premier vendor-neutral open source conference, where developers and technologists come together to collaborate, share knowledge, and explore the latest innovations and advancements in open source technology. Learn more at https://events.linuxfoundation.org/
Zero-Trust Containers: Rethinking Security in the Age of Ephemeral Workloads - Unnati Mishra, VMware by Broadcom & Akshat Khanna, Angel One
Container security approaches often focus heavily on image scanning while neglecting runtime protection, creating dangerous blind spots in cloud native architectures. Organizations deploy seemingly secure containers only to discover exploits targeting runtime vulnerabilities that bypass static analysis entirely. Our talk introduces a comprehensive defense-in-depth strategy that combines supply chain validation, admission controls, and runtime behavior analysis to detect and prevent sophisticated attacks. We'll demonstrate real-world attack patterns and how open source toolkits like Falco, SPIFFE, and AppArmor can be used for runtime protection, focusing on workload attestation and behavioral fingerprinting techniques that traditional security scanners often miss.