Apcera today announced a joint solution with FlawCheck,
a leading provider of container cybersecurity and malware detection
solutions. This joint solution extends Apcera's policy-driven approach
to securing Docker and other containerized workloads by testing Docker
images for known vulnerabilities and malware before deploying them in
production. This is one of many third party add-ons Apcera customers can
easily customize and integrate into the Apcera platform.
"Thanks to Apcera's extensible stagers and API, it was easy to integrate
FlawCheck vulnerability detection and malware detection capabilities
into the Apcera staging pipeline to measure the risk of containers and
prevent unsafe containers from reaching production," said Anthony
Bettini, founder and CEO of FlawCheck.
A recent industry report
identified high-priority security vulnerabilities in over 30 percent of
official Docker Hub images. Apcera stagers can be customized and
automated to use FlawCheck to inspect Docker containers, application
images, software packages (including operating systems and runtimes) and
servers for malware and vulnerabilities that could place an
organization at risk. This eliminates a typically long, manual staging
process prone to human error. Additionally, ITOps can modify the
application workflow to require approvals and notify stakeholders about
changes to particularly sensitive production environments, applications
or data.
Further mitigating security risks, the Apcera platform can scan
container layers one by one and directly communicate with the National
Vulnerability Database to locate and identify security holes through the
FlawCheck integration. This new integration extends Apcera's workload
security approach which encompasses the ability to define and enforce
security policies; control, orchestrate and scale workloads across
hybrid clouds; and monitor specific Docker workload permissions while
maintaining an audit trail.
"There's a delicate balance organizations must maintain when addressing
the need to innovate quickly while ensuring security and control in the
deployment of containerized workloads. Because it's challenging to
foresee potential exploits and threats, organizations need the
flexibility to customize their staging process to avoid vulnerabilities
and malware that can compromise the production environment," said Derek
Collison, founder and CEO of Apcera. "Our goal is to empower ITOps with
the peace of mind to let DevOps innovate while maintaining transparency
to developers' workflow. Integration with FlawCheck helps achieve this
by delivering pervasive security, visibility and control for any
workload."