Container adoption is off the charts. With more enterprises passing valuable data through these containers, security has become a chief priority for maintaining stability and for meeting new international data regulations such as GDPR.
A 2018 Sysdig report shows 83 percent of containers in use are Docker containers. Others, including CoreOS, Mesos and Linux, are slicing a little off the pie chart, but Docker still makes up the most sizable chunk of container usage.
A Validation Approach to Docker Security
So how do we keep Docker containers secure in today’s turbulent digital landscape? One way is to use detection software that scans Docker images to search for vulnerabilities. Docker auditing engines focus on discovering common vulnerabilities and exposures (CVE), often utilizing benchmarks set in databases such as the National Vulnerability Database (NVD).
Rather than code your own threat discovery software, many open source tools such as Docker Bench, Clair, Cilium, Dagda and others exist to save you the hassle. One in particular—Anchore—boasts an impressive feature set, with sturdy adoption and what appears to be a stable history of maintenance.
Click on the link below to to read full article.
Source: Container Journal