A Secure Docker Build Pipeline for Microservices

Tuesday, March 14, 2017 - 2:50pm3:15pm

Talk cancelled due to illness
Mason Jones, Staff Platform Engineer at Credit Karma

Abstract: 

When we began shifting to a microservices architecture, we had to answer the question of how to build Docker images with an emphasis on security: how do we know what's being built and deployed, and whether it's safe? We created a centralized build pipeline providing developer flexibility while allowing security and compliance to manage the process. In this presentation I'll describe the pipeline, our requirements, and how we solved the challenge.

Mason Jones, Staff Platform Engineer at Credit Karma

Staff Engineer on the Platform Services team at Credit Karma in San Francisco, working on microservices and container infrastructure. Prior to Credit Karma was VP of Technology at Womply and Chief Architect at RPX Corporation.

BibTeX
@conference {201850,
author = {Mason Jones},
title = {A Secure Docker Build Pipeline for Microservices},
year = {2017},
address = {San Francisco, CA},
publisher = {{USENIX} Association},
}