Seitse õde. Maia lugu Lucinda Riley
Gvisor-seccomp Security Profiles: The Complete Guide for Developers and Engineers
- Autor
- Kirjastaja
- Keel
- inglise
- Vorming
- Kategooria
Teadmiskirjandus
"Gvisor-seccomp Security Profiles"
"Gvisor-seccomp Security Profiles" is an authoritative guide for practitioners, architects, and engineers seeking to master the intricate art of securing Linux containers using gVisor and seccomp policies. Beginning with the foundational elements of container and sandbox security, the book examines the theory and practice behind Linux namespaces, cgroups, and capabilities, then moves into the emergence of application-aware sandboxes and the technical underpinnings of gVisor's user-space kernel. Readers gain a thorough understanding of the system call attack surface, security boundary design in multi-tenant environments, and the layered roles of tools such as SELinux and AppArmor.
Delving into both the mechanics of seccomp in Linux and the distinct features of gVisor, the book offers detailed discussions of syscall filtering, policy grammar, performance implications, and the architectural philosophy driving gVisor’s approach to isolation and compatibility. Each chapter is meticulously structured to cover practical aspects—such as authoring, deploying, and maintaining robust security profiles for dynamic workloads—while also addressing advanced engineering concerns, including policy chaining, contextual filtering, and seamless orchestration with complementary security modules. Real-world vulnerabilities, evasion techniques, threat modeling, and defensive architectures are contextualized with case studies, formal verification strategies, and incident response playbooks tailored for sandboxed environments.
Moving beyond technical implementation, "Gvisor-seccomp Security Profiles" addresses the challenges of operationalizing and scaling security policy in production. Through guidance on automation, integration with CI/CD pipelines, observability, and multi-tenancy governance, it arms readers with actionable insights for policy management at enterprise and hyperscaler scale. The book concludes by surveying future trends and research in the field—such as kernel evolution, automated policy synthesis, hardware-assisted isolation, and community-driven benchmarks—making it a comprehensive and indispensable resource for anyone invested in the security of modern containerized workloads.
© 2025 HiTeX Press (E-raamat): 6610000974122
Väljaandmise kuupäev
E-raamat: 24. juuli 2025
- Auhind õigesti elatud elu eest Triin Talk
- Jakob Satu Rämö
- Vihurimäe Emily Brontë
- Kas keegi kuuleb mind Ketlin Priilinn
- Ma valin elu. Otse ja ausalt Pille Retter
- Mees, kes teadis ussisõnu Andrus Kivirähk
- Pimedus langeb Robert Bryndza
- Lõikusaeg M. W. Craven
- Peretragöödia Mattias Edvardsson
- Koduabiline Freida McFadden
- Naine pingil Anna Jansson
- Surm ridade vahel Elly Griffiths
- Too mulle päikesepaiste Alex Brown
- Öised varjud Eva Björg Ægisdóttir
- Lõikusaeg M. W. Craven
- Kokkupõrge Freida McFadden
- Kustutatud sõnum K. L. Slater
- Enne kui on hilja Ketlin Priilinn
- Kas keegi kuuleb mind Ketlin Priilinn
- Koduabiline Freida McFadden
- Pimedus langeb Robert Bryndza
- Veristan su nagu lambatalle Shahrazad
- Koduabilise saladus Freida McFadden
- Lilledele värsket vett Valérie Perrin
- Kui hundid uluvad Margus Müür
- Pulmarahvas Alison Espach
- Koduabiline jälgib sind Freida McFadden
- Kallim Freida McFadden
- Naine pingil Anna Jansson
- Kustutatud sõnum K. L. Slater
- Koduabiline Freida McFadden
- Pimedus langeb Robert Bryndza
- Veristan su nagu lambatalle Shahrazad
- Koduabilise saladus Freida McFadden
- Pulmarahvas Alison Espach
- Koduabiline jälgib sind Freida McFadden
- Naine pingil Anna Jansson
- Kallim Freida McFadden
- Öised varjud Eva Björg Ægisdóttir
- Jakob Satu Rämö
- Tüdrukute õhtu – Tove Tönniesi mõrv Lars Olof Lampers
- Manni Kalevi Puonti
- Kõrvitsavürtsi kohvik Laurie Gilmore
- Petlik tõde Colleen Hoover
Vali pakett
Kokku üle 700 000 raamatu 4 keeles
Suur valik eestikeelseid raamatuid
Uusi raamatuid iga nädal
Kids Mode lastesõbralik keskkond
Unlimited
14.99 € /kuus
Tühista igal ajal
Unlimited (aastane)
119.99 € /aasta
Säästa 33%
