Hardening container images

In this presentation we will look at steps that we can take to improve container images. We will see how we can convert most images into non-root images with a read-only root filesystem and how to identify where the container want to write.

We will also look at SBOM's to make it easier to identify CVE's in this image, both now and in the future.

Marco Verleun

Being older than both Linux, the internet and Linux, Marco has been around for quite some time and continues to embrace new technologies. The last years he has been working mainly with container technology in both private and public cloud Kubernetes clusters where deployed clusters, improved and secured deployments and helped customers to improve the quality (security) of container images.