Docker security
Vormetric transparent encryption docker extension from Thales leverages open docker APIs and interfaces to enable policy-based encryption, access controls and data access logging for information stored within docker containers or accessed from docker. The result is rock solid operation, easy deployment and the protection organisations need to safely deploy production applications that use even the most sensitive information.
- Challenges
- Solutions
- Benefits
Exposure to privileged-user abuse.
Poor configuration of permissions within the Docker environment or container can result in multiple containers having access to information that should remain private. What's more, when Docker containers are hosted in shared virtualised or cloud environments, critical information can be exposed to third parties.
Cross-Container Access
Poor configuration of permissions within the Docker environment or container can result in multiple containers having access to information that should remain private. What's more, when containers are hosted in shared virtualised or cloud environments, critical information can be exposed to third parties.
Compliance Risks
Many compliance mandates require strong controls and auditing data access. However, many security teams have limited controls available for managing and tracking access to data that’s held within Docker containers and images. As a result, these teams are finding it difficult to comply with all their relevant internal security policies and regulatory mandates.
Vormetric data security
Thales delivers the strong, centrally managed data access controls you need to protect data in your Docker environments The Docker security solution features capabilities for file and volume level encryption, access control and logging of data access. These data access controls can be applied both to Docker containers and to the underlying operating system that is hosting Docker.
Vormetric transparent encryption
Vormetric transparent encryption is Thales’s flagship data security solution for managing file encryption and access control at the volume or operating-system level. Vormetric transparent encryption enables you to encrypt containers, control access to container images and instances and ensure container images and backups only run in authorised environments.
Vormetric transparent encryption Docker Extension
This Docker encryption solution extends Vormetric transparent encryption, enabling security teams to establish controls inside of Docker containers. With this transparent encryption Docker extension, you can apply Docker encryption, access control and data access logging on a per container basis. Encryption can be applied to data generated and stored locally within the container and to data mounted in the container by network file systems.
Protect against privileged users
Prevent abuse by privileged insiders. Vormetric transparent encryption Docker Extension guards against unauthorised access to data within containers. You can even keep administrators with root privileges and other privileged users from getting to data they’re not specifically authorised to access.
Leverage Containers and Cloud, without Compromising Security.
With Vormetric transparent encryption Docker Extension from Thales you can enforce your security policies in dynamic Docker environments and in multi-tenant cloud environments. As a result, the solution enables you to maximise the benefits of these approaches, without making any compromises in security.
Compliance
Address compliance requirements. Whether your organisation manages sensitive payment card data, healthcare records or other sensitive assets, you can use this solution to address the data access control requirements of all pertinent compliance mandates.