Securing and monitoring containers in enterprise environments
The End
With such a high feature churn rate in the DevSecOps area, it can be tempting to run your CI/CD pipelines with the latest bleeding-edge features. Needless to say, that path is likely to be a recipe for disaster. Not only will you constantly be chasing the leader, but also introducing costly stability issues and unwelcome attack surfaces about which you might not even be aware.
Testing is clearly of paramount importance.
Infos
- Docker EE: https://www.docker.com/enterprise-edition
- Common vulnerabilities and exposures: https://cve.mitre.org
- Docker CE: https://www.docker.com/community-edition
- Docker Security Scanning: https://docs.docker.com/docker-cloud/builds/image-scan/
- Kubernetes: https://kubernetes.io
- Run-time privilege and Linux capabilities: https://docs.docker.com/engine/reference/run/#runtime-privilege-and-linux-capabilities
- Linux capabilities: http://man7.org/linux/man-pages/man7/capabilities.7.html
- OCI-based implementation of the Kubernetes container runtime interface: https://github.com/kubernetes-incubator/cri-o
- rktlet: https://github.com/kubernetes-incubator/rktlet
- frakti: https://github.com/kubernetes/frakti
« Previous 1 2 3
Buy this article as PDF
Express-Checkout as PDF
Price $2.95
(incl. VAT)
(incl. VAT)