DevOps Conference | December 02 - 05, 2019 in Munich 2019
The Conference for Continuous Delivery, Microservices,
Containers, Clouds and Lean Business

Security: Filtering System Calls in Docker and Kubernetes

September 26: ✓ Group Discount ✓ Raspberry Pi or Playstation Classic for free ✓ Save up to 510 € Register now
Tuesday, December 3 2019
16:45 - 17:45

Not all containers are trustworthy – and even those you build yourself can be hacked. Malicious software might be included in the images, or downloaded into the container at runtime. While generic containers should keep the bad guys contained (hence, the name) it is possible to further improve security by limiting which system calls a container may execute. In this talk we’ll explain what system calls are, exactly how to filter them with Kubernetes and Docker, and how doing so improves security.

Stay tuned:

Behind the Tracks


Kubernetes Ecosystem

Docker, Kubernetes & Co

Microservices & Software Architecture

Maximize development productivity

Continuous Delivery & Automation

Build, test and deploy agile

Cloud Platforms & Serverless

Cloud-based & native apps

Monitoring, Traceability & Diagnostics

Handle the complexity of microservices applications


DevSecOps for safer applications

Business & Company Culture

Radically optimize IT

Organizational Change

Overcome obstacles on the way towards DevOps

Live Demo #slideless

Showing how technology really works