Tech Talk Series: Reducing the Attack Surface & Halting the Kill Chain with Unikernals

Events

Tech Talk Series: Reducing the Attack Surface & Halting the Kill Chain with Unikernals

Date: January 30, 2020 | 10 - 12pm | Location: DreamPort Facility in Columbia MD

---

Abstract

Unikernels are an emerging infrastructure pattern that run linux applications faster and safer than linux itself. They are the synthesis of combining the operating system and the application into one virtualized unit. They have a four-point security model: no usernames/passwords, no shell/remote access, heavily reduced attack surface, and most importantly — can only run one program per instance.

In this talk we will go into depth on what unikernels are, what their status is and how those interested can deploy unikernels to google cloud, aws, and others today. We'll show how the one process model deals heavy blows to would be attackers using real life exploits released in the past year. We'll also show the massive STIG compliance reduction we achieved when working with the Air Force.

About Ian Eyberg

Ian Eyberg is the CEO of NanoVMs, a provider of unikernel infrastructure and tooling. Ian's a noted authority on unikernels giving lectures on the subject at conferences worldwide and multiple patents for unikernels. NanoVMs was the first company to create a go unikernel, a .net unikernel, the first unikernel orchestrator and the first to load raw elf binaries.