[$] Making containers safer

On day one of the LinuxSecurity Summit North America (LSS-NA), Sti(C)phane Graber and ChristianBrauner gave a presentation on the current state and the future ofcontainer security. They both work for Canonical on the LXD project;Graber is the project lead and Brauner is the maintainer. They looked atthe different kernel mechanisms that can be used to make containers moresecure and provided some recommendations based on what they have learnedalong the way.