Home Applications Is Docker’s built-in Security ‘Good’ Enough?

Is Docker’s built-in Security ‘Good’ Enough?

Is Docker’s built-in Security ‘Good’ Enough?

When deploying Docker containers into production here’s a frequently asked question:

“Are the built-in security controls of Docker ‘good enough’ for my service?”

There’s been quite a few posts recently assessing the security requirements for container deployments and taking a stand one way or another. A blog post on Docker’s blog asserts that “Your Software is Safer in Docker Containers.” And in a recently published paper, the Gartner group says:

Container-Security-smContainers managed by Docker are effective in resource isolation.

However, VMware has taken a position that containers are safer when they’re running on a virtual machine.

Of course, the real answer is that ‘it depends.’ It depends on the requirements of your service and the risk you’re willing to take if it’s compromised. While simple isolation and built-in security features may be adequate for most applications, it may not be appropriate for business critical services. Does your business rely on these containers for critical processes? Are these services publicly accessible? Will an attacker be able to get to sensitive privacy or account data?

Container deployments are in the early phases for most companies, and the attack vectors and threat surfaces are not fully known at this time. But just like what we went through with virtualization, and datacenter servers before that, real-time protection for running containers is going to be needed as the last line of defense against hackers who can, and will, get through traditional controls.

There aren’t many companies focusing on this aspect of container security yet. NeuVector is one of those which offers run-time application centric protection for containers. This is especially timely given that the promised benefits of containers include rapid deployment and scale, and these can’t be reduced by cumbersome traditional security tools. NeuVector’s solution is now available to try for a limited number of partners and deploys in minutes just like any other containers.

Learn more and try the beta here!

NeuVector NeuVector was founded by security and enterprise software veterans with the vision of simple, scalable security for container based applications. The team has over 20 years of security, virtualization, and enterprise software experience from companies such as VMWare, Fortinet, Cisco, and Trend Micro.

Featured Resources:

Related Articles:


White Papers

    Application Lifecycle Management with Stratusphere UX – White Paper

    Enterprises today are faced with many challenges, and among those at the top of the list is the struggle surrounding the design, deployment, management and operations that support desktop applications. The demand for applications is increasing at an exponential rate, and organizations are being forced to consider platforms beyond physical, virtual and cloud-based environments. Users […]


      Download Commvault VM Backup and Recovery: end-to-end VM backup, recovery and cloud management

      Commvault’s ability to provide end-to-end VM backup, recovery and cloud management creates a significantly better way to build, protect and optimize VMs throughout their lifecycle. Our best-in-class software for VM backup, recovery and cloud management delivers a number of significant benefits, including: VM recovery with live recovery options; backup to and in the cloud; custom-fit […]

      On-Demand Webinars

        What’s Going on in EUC Printing – A Technical Deep Dive!

        The IGEL Community and ThinPrint invite you to watch the following technical deep dive webinar. The agenda is to technically bring you up to speed on what’s going on in the EUC Printing space today along with a deep dive into new methods, technologies, printing scenarios and a discussion on why printing still matters. You […]

        Latest Videos

          Views All IT News on DABCC.com
          Views All IT Videos on DABCC.com
          Win big $$, visit ITBaller.com for more info!

          Visit Our Sponsors