SecAppDev 2019 has ended

Sign up or log in to bookmark your favorites and sync them to your phone or calendar.

Container security [clear filter]
Wednesday, February 20


Addressing security in containerized applications with Istio
Containerized deployments have a significant impact on security. Here, we explore the challenges and investigate how Istio's security mechanisms can be used to increase security.

Container-based deployments are on the rise. A container-based deployment model is mostly independent of an environment and provider. As a result, many organizations start using them to achieve a higher degree of flexibility. Unfortunately, a containerized world brings new threats and challenges into the world.

In this session, we will investigate some threats in containerized applications. The container system itself handles some of these challenges. Others need to be handled elsewhere. One way to address these is handling them in the application. Another is using additional isolation mechanisms. Concretely, we will investigate Istio. You will learn what Istio is and how it works. More importantly, we will explore how Istio can help us solve some of the security issues generically.

This session is intended for anyone deploying their applications in containers.


Erlend Oftedal

CTO, Blank AS

Wednesday February 20, 2019 11:00 - 12:30
Main building (room Lemaire)


Exploring the security of cloud-native technologies
"Cloud-native" is the hottest buzzword in the world of DevOps.  This talk aims to break down the security implications around some of the most popular technologies such as Cloud, Kubernetes, and Docker.

The "cloud-apocalypse is already here. Don't be the one who missed the boat when it comes to security.  This talk will discuss how cloud-native technologies have impacted security for better or worse. If carefully navigated, this new world  can actually be a good place for all of us who care  deeply about security and privacy.

We will discuss all things Cloud, containers, Kubernetes, and beyond as well as explore some frameworks for evaluating the security and readiness of these modern cloud-native technologies. We will also reminisce over some recent security war stories that these projects have endured to get where they are today.

This session is intended for developers, QA, Security Engineers, and anyone interested in how the cloud is transforming our security landscape.


Jimmy Mesta

CTO, Manicode Security

Wednesday February 20, 2019 16:00 - 17:30
West wing (room Lemaître)
Thursday, February 21


Securing Kubernetes the hard way (workshop)
This technical course is geared towards defenders. It focuses on the ins and outs of taking containers from a developer’s laptop to production Kubernetes clusters. We cover numerous security 'gotchas' around building a modern cloud infrastructure. Each student will be provided with a production-ready Kubernetes cluster hosted in Google Container Engine (GKE)

This workshop is intended for developers, system administrators, security testers, anyone working with or moving towards Kubernetes


Jimmy Mesta

CTO, Manicode Security

Thursday February 21, 2019 09:00 - 17:30
Main building (room Bisschopskamer)