Open Stack Summit 2018 | Container infrastructure keynote: Containers Should Contain …Right?

Containers are increasingly being used to deploy applications, and with good reason - given their portability, simple scalability and lower management burden. But there’s one myth worth clearing up - containers do not provide an impermeable security boundary, nor do they aim to.

If you want to run untrusted code in containers, how can you ensure it doesn’t affect other workloads? How should you set yourself up for multitenancy?

In this talk, you’ll learn about security boundaries, the isolation currently provided at each construct in a containerized system, and new projects that you can start using for stronger isolation requirements.

Watch the recording Get the slides