LinuxCon + CloudOpen + ContainerCon NA 2015

Building Docker images is easy, that’s why there are over 45,000 public images on Docker Hub today albeit only 100 ‘official’ images. Creating reproducible, secure images from source that are easily maintained and updated takes a bit more planning and automation.  In this session, you’ll learn what it takes to create a successful (and secure) build strategy.

 Source-to-Image (S2I) is a framework that makes it easy to write images that take application source code as an input and produce a new image that runs the assembled application as output. The main advantages of using S2I for building reproducible Docker images is the ease of use for developers, peace of mind for cloud operators and eternal hope and optimism for compliance and risk management teams.

As a builder image author, you must understand a few basic concepts in order for your images to automate the build process and take advantage of some of the additional security best practices required for today’s containerized cloud-based applications and incorporate new architectures microservices, new processes enabled by OpenShift 3 and Kubernetes along with some old trusted Best Practices (like using SELinux) and common sense.

Attendees of this session will learn:
How to Build Secure Container Images using S2I
Why SELinux still matters in a Containerized world
How to Incorporate CI/CD to ensure Consistency and Compliance
How to Use OpenShift 3 on OpenStack to Scale, Manage and Secure Application Stacks