Preston and I interviewed Twistlock CEO Ben Bernstein about his company’s approach to container-based security from a new perspective known as intent-based security, which also has us rethinking application security. Ben gives us an overview of intent-based security and a detailed explanation of why a new perspective is important to application security.
- Ben’s concept of intent–based security is evolving not only the way organizations build applications as DevOps adoption, and with it container adoption, continues to rise, but also rethinking the approach to application security to address fundamental application intent issues
- Why it is so difficult for IT, security and dev teams to look at an app and deduce intent
- Why attacks on the application layer are harder to detect than the network layer and more difficult to contain
- How to effectively add security to a container-based implementation of DevOps
Podcast details: Length – 20:55 minutes. MP3 format. G rating for all audiences.
Get your own copy of the ebook mentioned in the podcast, “How to Securely Configure a Linux Host to Run Containers“.
As discussed in the podcast, don’t assume anything about security for your container hosts or your containers. Container hosts must be thoughtfully secured, because if someone compromises your host; he owns your containers. Securing applications and their containers requires more than cursory security tests. You must build your applications with security in mind and you must also securely build your containers for those applications.