Docker Security

From Glitchdata
Revision as of 19:50, 18 February 2019 by Terence (talk | contribs)
Jump to navigation Jump to search

One of the valuable aspects to Docker Images is the ability to sign them. This allows the validation of integrity and trust of an Image.

Docker achieves this using Docker Notary

  • Know what is in the code base
    • Understand the libraries, and it origin
  • Know what is in your containers
  • Docker Image Authenticity - Do you know the source?
  • Avoid noisy neighbours - Help survive DDoS attacks.
  • Running containers in super-priviledged mode might be unnecessary