Christo Goosen - Google gvisor container runtime sandbox

Fa3bde7b9c5510a7016f801a92c90d3c?s=47 DevOpsDays Cape Town
September 21, 2018
Technology
0
68

Christo Goosen - Google gvisor container runtime sandbox

Gvisor was released 5 months ago and promoted with Google Cloud Platform’s push for python3.7 support. Google identified the need for a user-space kernel to act as a sandbox in container/docker environments. Gvisor is written in Golang, provides a swop in runtime for docker and provides a additional layer of kernel protection from your executed code. Google’s gvisor aims to protect the host kernel with “employs rule-based execution to provide defense-in-depth”. Will cover a quick intro and how easy it is to get going with gvisor.

Fa3bde7b9c5510a7016f801a92c90d3c?s=128

DevOpsDays Cape Town

September 21, 2018
Tweet

Want more?

3d4519fd34b76fb265fc0237f3792bd4?s=48 Mar 17, 2019
152
16k
A9b18bbab50a3afb80222c0a85e710d0?s=48 Feb 12, 2019
142
11k
2f5463832ccb768ccb4a1ca3607c27ef?s=48 Feb 23, 2019
189
15k
D67fff74178013024d833b3eec6cf27f?s=48 Oct 7, 2018
232
14k
48c098b6579220a67a6ba949be6e4b5a?s=48 Nov 13, 2018
179
8.3k
C7393b7ba7ec9c8890dd77d209fbb3c9?s=48 Jul 20, 2018
477
34k
7c8469ee8c9e594c65c59b919626c08d?s=48 Jun 14, 2018
239
10k
1177e050db6bafe62885362edf6e3537?s=48 Jun 19, 2018
405
25k
9952dfcd5d338f8a8e7175c8a8f65fb5?s=48 Jun 18, 2018
313
14k
Dafc4723e9a1c067796c0fec6f509774?s=48 Jun 7, 2018
575
36k
F383c6a4dc55e331bbe2987b622cee6b?s=48 Jun 8, 2018
251
10k
433acaea1012b25d97ae66da9b998dad?s=48 Jun 6, 2018
187
7.9k