Squeeks aside, this was very clear and informative. Question, could you drop a quick vid on container security, regarding communication? Something like your ideas on HTTP vs HTTPS between the containers and it's implications on securing deployments.
Dumb question, but i am fascinated with this presentation style. How can I do this without having to learn to draw and write backwards? Or is this being done in a mirror?
The main "attack surface" is not even mentioned: Missing isolation of the container from the host. There are not even any serious approaches for this. What you talk about has ALL nothing to do with docker. A system where you have to trust your hosting provider is not considered "safe". You hand over all - and I mean ALL - of your data and secrets to who ever runs your "server". This was impossible in earlier models where a root access was solely meant for the admin, NOT the ISP.
I am contemplating about doing a Master's Thesis on, "Security of container solutions and orchestration frameworks in the context of Industrial Control S ystem". Any suggestions on this.