Aqua Cloud Native Security JumpStart: Container Image Scanning

Logo
Presented by

Iheanyi Njeze, Solutions Architect

About this talk

Full cloud native security requires more than application security testing and network monitoring. It requires a concerted approach to vulnerability management within CI/CD pipelines, in pre-production testing, and at runtime. Attackers know container images are being statically scanned during the build stage so they’re now exploiting production images. In this session, we’ll show you how to scan CI builds and images but also take you beyond traditional container image scanning to scan for risks that only show up when a container is running. In addition to our live demonstration, you will learn: -Scan CI builds and images based on a constantly updated stream of aggregate sources of vulnerability data (CVEs, vendor advisories, and proprietary research) -How to uncover hidden malware and kill chains by detecting hidden risks in container images as if they were running in production. -Commercial vs Open Source Scanning: when to use what?

Related topics:

More from this channel

Upcoming talks (2)
On-demand talks (4)
Subscribers (33)
Aqua Security is the largest pure-play cloud native security company, providing customers the freedom to innovate and accelerate their digital transformations. The Aqua Platform is the leading Cloud Native Application Protection Platform (CNAPP) and provides prevention, detection, and response automation across the entire application lifecycle to secure the supply chain, secure cloud infrastructure and secure running workloads wherever they are deployed. Aqua customers are among the world’s largest enterprises in financial services, software, media, manufacturing and retail, with implementations across a broad range of cloud providers and modern technology stacks spanning containers, serverless functions and cloud VMs.