The open-source Docker container virtualization technology has become increasingly popular for building, packaging and deploying applications. As Docker deployments grow, there is a need to make sure that proper enterprise security policy is applied, and the CloudPassage Halo system is aimed at addressing that challenge.
While Docker containers reduce the attack surface relative to other forms of virtualization, there are still risks. Docker was patched in both November and December 2014 for security issues that could have potentially enabled exploitation.
“It is our belief that you can run Docker securely, but it still requires the user to be responsible for configuration and security,” Amrit Williams, CTO at CloudPassage, explained to eWEEK.