Exposure to Privileged-User Abuse.
Poor configuration of permissions within the Docker environment or container can result in multiple containers having access to information that should remain private. Further, when Docker containers are hosted in shared virtualized or cloud environments, critical information can be exposed to third parties.
Poor configuration of permissions within the Docker environment or container can result in multiple containers having access to information that should remain private. Further, when containers are hosted in shared virtualized or cloud environments, critical information can be exposed to third parties.
Many compliance mandates require strong controls and auditing data access. However, many security teams have limited controls available for managing and tracking access to data that’s held within Docker containers and images. As a result, these teams are finding it difficult to comply with all their relevant internal security policies and regulatory mandates.
Vormetric Data Security
Thales eSecurity delivers the strong, centrally managed data access controls you need to protect data in your Docker environments. The Docker security solution features capabilities for file and volume level encryption, access control, and logging of data access. These data access controls can be applied both to Docker containers and to the underlying operating system that is hosting Docker.
Vormetric Transparent Encryption
Vormetric Transparent Encryption is Thales’ flagship data security solution for managing file encryption and access control at the volume or operating-system level. Vormetric Transparent Encryption enables you to encrypt containers, control access to container images and instances, and ensure container images and backups only run in authorized environments.
Vormetric Transparent Encryption Docker Extension
This Docker encryption solution extends Vormetric Transparent Encryption, enabling security teams to establish controls inside of Docker containers. With this transparent encryption Docker extension, you can apply Docker encryption, access control, and data access logging on a per container basis. Encryption can be applied to data generated and stored locally within the Docker container and to data mounted in the container by network file systems.
Protect against Privileged Users
Prevent abuse by privileged insiders. Vormetric Transparent Encryption Docker Extension guards against unauthorized access to data within containers. You can even keep administrators with root privileges and other privileged users from getting to data they’re not specifically authorized to access.
Leverage Containers and Cloud, without Compromising Security.
With Vormetric Transparent Encryption Docker Extension from Thales eSecurity you can enforce your security policies in dynamic Docker environments and in multi-tenant cloud environments. As a result, the solution enables you to maximize the benefits of these approaches, without making any compromises in security.
Address compliance requirements. Whether your organization manages sensitive payment card data, healthcare records, or other sensitive assets, you can use this solution to address the data access control requirements of all pertinent compliance mandates.