Kurs Süresi
1. Introduction
to Container Security
-
Overview of containers and containerization
- Common
security risks and challenges in container environments
-
Importance of security best practices and risk management
2. Container Security Features and Configuration
-
Container isolation and namespaces
-
Control groups (cgroups) and resource limits
-
Container images and image security
-
Dockerfile best practices for security
-
Container runtime configuration and security settings
3. Secure Container Deployment and Management
-
Container deployment models (e.g., Docker Compose, Kubernetes)
- Best
practices for container networking and communication
-
Secrets management and encryption
-
Container orchestration and management tools (e.g., Docker Swarm, Kubernetes)
4. Container Host Security and Management
- Host
operating system security
-
Container host hardening and configuration
-
Logging and monitoring for container hosts
- Host
security best practices and risk management
5. Container Registry Security and Management
-
Overview of container registries
-
Registry security risks and challenges
-
Registry authentication and access control
-
Registry encryption and data protection
6. Advanced Container Security Topics
-
Container escape vulnerabilities and mitigation strategies
-
Container image signing and verification
-
Runtime security monitoring and threat detection
-
Container security testing and validation
7. Best Practices for Container Security
- Image
management and vulnerability scanning
- Configuration
management and automation
- Least
privilege and access control
-
Auditing and compliance
- Backup
and recovery
8. Hands-On Labs and Exercises
-
Practical exercises and labs to reinforce key container security concepts and
best practices
-
Scenarios and use cases that simulate real-world container security challenges
- Group
discussions and collaboration on security topics and best practices