Tigera: How to reduce the attack surface of Docker base images
Vulnerabilities in base images are one of the biggest concerns for container security. Container scanning tools list hundreds of vulnerable Linux libraries, many of which are not needed by your application. Scratch images are one option for reducing vulnerabilities in base images, but building them with a reduced attack surface is not easy.
In this webinar, You will learn how to containerize a production application using scratch images and determine its runtime dependencies, containerize them ultimately reducing the attack surface significantly.
In this webinar, you will learn how to:
– containerize a production application using scratch images, determine its runtime dependencies and containerize them to significantly reduce the attack surface;
– identify Linux libraries required for an application or a language (Python, Java);
– reduce capabilities for a containerized root user; and
– use CI to create scratch images with required libraries, which should result in a tremendous reduction of both vulnerabilities and attack surface.
We hope you will join us for this free and informative webinar.