This event has ended. Visit the official site or create your own event on Sched.
June 25 - 27 - Beijing, China
Click Here For Information & Registration

Back To Schedule
Wednesday, June 27 • 13:30 - 14:10
How Hypervisors Provide Security in a Containerized World - Stefano Stabellini, Xen Project

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Feedback form is now closed.
Containers are the new industry standard for server applications. While traditional techniques to run container apps are under scrutiny due to their less-than-ideal isolation properties, thanks to the OCI specifications, now we have clear guidelines on the container packaging format and runtime environment. It is easier than ever to write new container runtimes able to interact with Kubernetes and the Docker Hub.

This talk will introduce a new approach to secure containers based on virtualization. It will go into details on the design and will show how it compares to traditional hypervisors and Linux namespaces regarding security, overhead, and performance. The presentation will explain why it is critical to monitor containers and will introduce a new paravirtualized protocol which allows detailed auditing of network traffic from the apps without compromising performance.

avatar for Stefano Stabellini

Stefano Stabellini

Principal Engineer, Xilinx
Stefano Stabellini serves as system software architect and virtualization lead at Xilinx, the world's largest supplier of FPGA solutions. Previously, at Aporeto, he created a virtualization-based security solution for containers and authored several security articles. As Senior Principal... Read More →

Wednesday June 27, 2018 13:30 - 14:10 CST