David Lawrence

Docker Security at PyCon: Threat Modeling & State Machines

The Docker Security Team was out in force at PyCon 2017 in Portland, OR, giving two talks focussed on helping the Python Community to achieve better security. First up was David Lawrence and Ying Li with their “Introduction to Threat Modelling talk”. Threat Modelling is a structured process that aids an engineer in uncovering security vulnerabilities in an application design or implemented software. The great majority of software grows organically, gaining new features as some critical mass of users requests them. These features are often implemented without full consideration of how they may impact every facet of the system they are augmenting. Threat modelling aims to increase awareness of how a system operates, and in doing so, identify potential vulnerabilities. The process is broken up into three steps: data collection, analysis, and remediation. An effective way to run the process is Continue reading…

Betty Junod

Docker Federal Summit Recap and videos

On May 2nd, Docker returned to the Newseum to host the second annual Docker Federal Summit.  This one day event is designed to bring government agency developers, IT ops, program leaders and the ecosystem together to share and learn about the trends driving change in IT from containers, cloud and devops.  We expanded the agenda this year two tracks, with presentations from Docker, ecosystem partners, agency and community leaders to drive discussions, technology deep dives and hands on tutorials. View the general session replay here: General session table of content and slides 13:05 Iain Gray, SVP Customer Success discusses how Docker delivers a unique secure supply chain for all applications and infrastructure 33:35 Nathan McCauley, Director Security Engineering discusses the principles of least privilege design on which Docker is built 55:30 Modernize Traditional Apps to gain portability, security and efficiency without changing source Continue reading…

Jenny Fong

Docker Enterprise Edition Brings New Life Back to Legacy Apps at Northern Trust

Many organizations understand the value of building modern 12-factor applications with microservices. However, 90+% of applications running today are still traditional, monolithic apps. That is also the case for Northern Trust – a 128-year old financial services company headquartered in Chicago, Illinois. At DockerCon 2017, Rob Tanner, Division Manager for Enterprise Middleware at Northern Trust, shared how they are using Docker Enterprise Edition (EE) to modernize their traditional applications to make them faster, safer, and more performant. Bringing Agility and Security to Traditional Apps Founded in 1889, Northern Trust is a global leader in asset servicing, asset management, and banking for personal and institutional clients. Their clients expect best-of-breed services and experiences from Northern Trust and Rob’s team plays a large role in delivering that. While their development teams are focused on microservices apps for greenfield projects, Rob is responsible Continue reading…

Victor Coisne

DockerCon 2017: The Top Rated Sessions

After the general session videos from DockerCon Day 1 and Day 2 yesterday, we’re happy to share with you the video recordings of the top rated sessions by DockerCon attendees. All the slides will soon be published on our slideshare account and all the breakout session video recordings available on our DockerCon 2017 youtube playlist. Cilium: Network and Application Security with BPF and XDP by Thomas Graf Docker?!? But I am a Sysadmin by Mike Coleman Creating Effective Images by Abby Fuller Taking Docker from Local to Production at Intuit by JanJaap Lahpor and Harish Jayakumar Container Performance Analysis by Brendan Gregg Secure Substrate: Least Privilege Container Deployment by Diogo Mónica and Riyaz Faizullabhoy Escape from VMs with Image2Docker by Elton Stoneman and Jeff Nickoloff What Have Namespaces Done for You Lately? by Liz Rice Watch the top rated sessions from #dockercon cc @brendangregg @abbyfuller @lizrice @diogomonica   Click To Tweet

Get the Latest Docker News by Email

Docker Weekly is a newsletter with the latest content on Docker and the agenda for the upcoming weeks.

Victor Coisne

DockerCon 2017 Day 1 Highlights

What an incredible DockerCon 2017 we had last week. Big thank you to all of the 150+ confirmed speakers, 100+ sponsors and over 5,500 attendees for contributing to the success of these amazing 3 days in Austin. You’ll find below the videos and slides from general session day 1.All the slides will soon be published on our slideshare account and all the breakout session video recordings available on our DockerCon 2017 youtube playlist. Here’s what we covered during the day 1 general session: 17:00 Developer Workflow improvements and demo 37:00 Secure Orchestration and demo 59:00 Introducing LinuxKit: a toolkit for building secure, lean and portable linux subsystems 1:15 Introducing the Moby Project: a new open source project to advance the software containerization movement Development workflow Improvements Solomon’s keynote started by introducing new Docker features to improve the development workflows of Docker users: multi-stage builds and desktop-to-cloud integration. With multi-stage builds Continue reading…

Dee Kumar

WEBINAR Q&A: Modernize Traditional Applications with Docker Enterprise Edition

This week at DockerCon, we announced the Modernize Traditional Applications (MTA) Program to help enterprises make their existing legacy apps more secure, more efficient and portable to hybrid cloud infrastructure. This webinar covers the importance of “WHY NOW and HOW” to start modernizing traditional applications with Docker Enterprise Edition. Legacy applications often serve critical business needs and have to be maintained for a long time. The maintenance of these applications can become expensive and very time consuming. Some applications may have been written decades ago, grown to millions of lines of code  and the team that built and deployed the app may no longer be at your company. That can pose a challenge for app maintenance, security and support. Docker Enterprise Edition and the Image2Docker Tool presents a unique opportunity to modernize these apps into containers to make them portable, more secure and Continue reading…

Ying Li

Introducing Docker Secrets Management

Containers are changing how we view apps and infrastructure. Whether the code inside containers is big or small, container architecture introduces a change to how that code behaves with hardware – it fundamentally abstracts it from the infrastructure. Docker believes that there are three key components to container security and together they result in inherently safer apps. A critical element of building safer apps is having a secure way of communicating with other apps and systems, something that often requires credentials, tokens, passwords and other types of confidential information—usually referred to as application secrets. We are excited to introduce Docker Secrets, a container native solution that strengthens the Trusted Delivery component of container security by integrating secret distribution directly into the container platform. With containers, applications are now dynamic and portable across multiple environments. This  made existing secrets distribution solutions Continue reading…

Jenny Burcio

More DockerCon Speakers Announced

Today, we are announcing the next group of awesome DockerCon speakers and we can’t wait for the lessons, stories, tips, tricks and insights they will share. Need tips on how to create effective images, even when you have to include a bunch of image processing libraries? What about learning how other organizations are taking Docker into production and adopting DevOps? Want to deep dive into the Docker internals from Docker’s technical staff? Join us at the largest container conference in the world to hear these stories and many more DockerCon speakers from the community.  Docker Security Deep Dive Journey to Docker Production: Evolving Your Infrastructure and Processes Creating Effective Docker Images Plug-ins: Building, Shipping, Storing and Running Docker for Ops Docker Networking               Modern Storage Platform for Containerized Environments Do you really want to attend sessions Continue reading…