Sponsored By: Aqua Security Software
The NIST (National Institute of Standards and Technology, part of the U.S. Dept. of Commerce) has released a container security guide (NIST SP 800-190) to provide practical recommendations for addressing container environments’ specific security challenges. This document covers the major risks and countermeasures that organizations should consider deploying as best practices.
This is a comprehensive, multi-faceted guide that spans several roles who are involved with helping their organization comply with the NIST SP 800-190 recommendations.
- Security: Includes a checklist of the practical steps and controls they need to apply.
- DevOps: Explains from their perspective how to improve the security of their container-based applications.
- Compliance: Reviews how to achieve and demonstrate compliance in the container environment.
This report also describes how the Aqua Container Security Platform addresses each requirement, including:
- Image scanning
- Registry security
- Orchestrator security
- Container runtime protection
- Host OS hardening