Hardening Containers with Seccomp - Hands-On Profiles, Pitfalls, and Real Exploits

Learn to secure containers using seccomp (secure computing mode) through hands-on demonstrations of syscall filtering techniques in this 49-minute conference talk. Discover how to generate effective seccomp profiles that restrict system calls available to containerized applications, reducing attack surface and preventing privilege escalation. Explore real-world security scenarios through a detailed case study of the Apache Druid vulnerability, demonstrating how proper seccomp implementation can contain live exploits. Master practical deployment strategies and profile tuning techniques to balance security hardening with application functionality. Gain insights into common pitfalls when implementing seccomp policies and learn best practices for maintaining secure container environments in production systems.