{"id":2343,"date":"2017-09-10T23:22:55","date_gmt":"2017-09-10T23:22:55","guid":{"rendered":"http:\/\/websecuritypatterns.com\/blogs\/?p=2343"},"modified":"2017-10-12T02:47:55","modified_gmt":"2017-10-12T02:47:55","slug":"nist-guidance-on-application-container-security-docker-containers","status":"publish","type":"post","link":"https:\/\/websecuritypatterns.com\/blogs\/2017\/09\/10\/nist-guidance-on-application-container-security-docker-containers\/","title":{"rendered":"Application Container Security Guidance from NIST (Docker Containers)"},"content":{"rendered":"

\"\"NIST released an Application Container Security publication (SP 800-190), which delves into the major security risks and concerns related to Container images, registries, OS, orchestration, network isolation. It also presents a long-list of proactive countermeasures and mitigation recommendations for the known risks and example scenarios on how to\u00a0address container security threats with the recommended countermeasures. \u00a0Although it is a quite high-level document, it details well enough for evolving security architecture using container technologies particularly securing Docker containers and Kubernetes orchestrator.<\/p>\n

Here is the publication<\/a>:<\/p>\n

http:\/\/nvlpubs.nist.gov\/nistpubs\/SpecialPublications\/NIST.SP.800-190.pdf<\/p>\n","protected":false},"excerpt":{"rendered":"

NIST released an Application Container Security publication (SP 800-190), which delves into the major security risks and concerns related to Container images, registries, OS, orchestration, network isolation. It also presents a long-list of proactive countermeasures and mitigation recommendations for the known risks and example scenarios on how to\u00a0address container security threats with the recommended countermeasures. \u00a0Although it is a quite… Read more »<\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_monsterinsights_skip_tracking":false,"_monsterinsights_sitenote_active":false,"_monsterinsights_sitenote_note":"","_monsterinsights_sitenote_category":0,"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[15,9],"tags":[93,94,95,96],"class_list":["post-2343","post","type-post","status-publish","format-standard","hentry","category-cloud-security","category-security","tag-cloud-security","tag-docker","tag-kubernetes","tag-nist-guidance"],"jetpack_sharing_enabled":true,"jetpack_featured_media_url":"","_links":{"self":[{"href":"https:\/\/websecuritypatterns.com\/blogs\/wp-json\/wp\/v2\/posts\/2343","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/websecuritypatterns.com\/blogs\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/websecuritypatterns.com\/blogs\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/websecuritypatterns.com\/blogs\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/websecuritypatterns.com\/blogs\/wp-json\/wp\/v2\/comments?post=2343"}],"version-history":[{"count":4,"href":"https:\/\/websecuritypatterns.com\/blogs\/wp-json\/wp\/v2\/posts\/2343\/revisions"}],"predecessor-version":[{"id":2427,"href":"https:\/\/websecuritypatterns.com\/blogs\/wp-json\/wp\/v2\/posts\/2343\/revisions\/2427"}],"wp:attachment":[{"href":"https:\/\/websecuritypatterns.com\/blogs\/wp-json\/wp\/v2\/media?parent=2343"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/websecuritypatterns.com\/blogs\/wp-json\/wp\/v2\/categories?post=2343"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/websecuritypatterns.com\/blogs\/wp-json\/wp\/v2\/tags?post=2343"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}