Virtualization Technology News and Information
Apcera and FlawCheck Defend Against Docker Workload Vulnerabilities and Malware

Apcera today announced a joint solution with FlawCheck, a leading provider of container cybersecurity and malware detection solutions. This joint solution extends Apcera's policy-driven approach to securing Docker and other containerized workloads by testing Docker images for known vulnerabilities and malware before deploying them in production. This is one of many third party add-ons Apcera customers can easily customize and integrate into the Apcera platform.

"Thanks to Apcera's extensible stagers and API, it was easy to integrate FlawCheck vulnerability detection and malware detection capabilities into the Apcera staging pipeline to measure the risk of containers and prevent unsafe containers from reaching production," said Anthony Bettini, founder and CEO of FlawCheck.

A recent industry report identified high-priority security vulnerabilities in over 30 percent of official Docker Hub images. Apcera stagers can be customized and automated to use FlawCheck to inspect Docker containers, application images, software packages (including operating systems and runtimes) and servers for malware and vulnerabilities that could place an organization at risk. This eliminates a typically long, manual staging process prone to human error. Additionally, ITOps can modify the application workflow to require approvals and notify stakeholders about changes to particularly sensitive production environments, applications or data.

Further mitigating security risks, the Apcera platform can scan container layers one by one and directly communicate with the National Vulnerability Database to locate and identify security holes through the FlawCheck integration. This new integration extends Apcera's workload security approach which encompasses the ability to define and enforce security policies; control, orchestrate and scale workloads across hybrid clouds; and monitor specific Docker workload permissions while maintaining an audit trail.

"There's a delicate balance organizations must maintain when addressing the need to innovate quickly while ensuring security and control in the deployment of containerized workloads. Because it's challenging to foresee potential exploits and threats, organizations need the flexibility to customize their staging process to avoid vulnerabilities and malware that can compromise the production environment," said Derek Collison, founder and CEO of Apcera. "Our goal is to empower ITOps with the peace of mind to let DevOps innovate while maintaining transparency to developers' workflow. Integration with FlawCheck helps achieve this by delivering pervasive security, visibility and control for any workload."

Published Tuesday, August 04, 2015 5:19 PM by David Marshall
Filed under: ,
There are no comments for this post.
To post a comment, you must be a registered user. Registration is free and easy! Sign up now!
<August 2015>