Looking at Intent-based Security and Rethinking Application Security with Twistlock CEO Ben Bernstein (Podcast)

twistlock

Preston and I interviewed Twistlock CEO Ben Bernstein about his company’s approach to container-based security from a new perspective known as intent-based security, which also has us rethinking application security. Ben gives us an overview of intent-based security and a detailed explanation of why a new perspective is important to application security.

  1. Ben’s concept of intentbased security is evolving not only the way organizations build applications as DevOps adoption, and with it container adoption, continues to rise, but also rethinking the approach to application security to address fundamental application intent issues
  2. Why it is so difficult for IT, security and dev teams to look at an app and deduce intent
  3. Why attacks on the application layer are harder to detect than the network layer and more difficult to contain
  4. How to effectively add security to a container-based implementation of DevOps

Podcast details: Length – 20:55 minutes. MP3 format. G rating for all audiences.

Get your own copy of the ebook mentioned in the podcast, “How to Securely Configure a Linux Host to Run Containers“.

As discussed in the podcast, don’t assume anything about security for your container hosts or your containers. Container hosts must be thoughtfully secured, because if someone compromises your host; he owns your containers. Securing applications and their containers requires more than cursory security tests. You must build your applications with security in mind and you must also securely build your containers for those applications.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s