Security is pretty. Security is good. But it should never be pretty good.
Container Camp SF 2016 - http://container.camp/
Cynthia Thomas - Systems Engineer at Midokura
This is a call to all who want to deploy production-grade networking for container-based workloads. With the adoption of container orchestration engines like Swarm, Kubernetes and Mesos, it’s important to adapt security technologies that scale with growing deployments. If we can isolate workloads with overlays, that’s pretty good. If we can seal a container on a host, that’s great!
Kuryr and MidoNet open source projects achieve network security for containers in a simplified, distributed architecture. Removing architectural bottlenecks, Kuryr + MidoNet efficiently implements security policies through the hardened Neutron framework for use by containers in large scale environments.