Docker and container technologies have revolutionized the revolution. Many organizations are already embracing DevOps tools and principles and containers adds another layer of simplicity and automation…along with some potential security concerns.
The potential security issues of containers has led companies like Microsoft to develop Hyper-V containers. [inlinetweet prefix=”” tweeter=”” suffix=””]Twistlock has a different approach to enable organizations to use container technologies more securely[/inlinetweet]:
Containers are the next big thing when it comes to DevOps and rapid application development. The concept of containers has taken off thanks in no small part to Docker, but for many organizations there are inherent security concerns to address in order to use container technologies with confidence.Twistlock wants to help organizations solve the security challenge and take advantage of containers.
Docker seems to be virtually everywhere now. The number of developers relying on Docker and the volume of containerized apps supported by Docker is escalating exponentially with each passing day. Creating stable, cost efficient applications can’t come at the expense of security, though. Security needs to be integral to container development rather than the collateral damage of it. Microsoft recently introduced Hyper-V Containers to address the security dilemma with containers, but Twistlock has an approach designed to help secure the Docker containers organizations are already using.
Twistlock is a based in Israel and was founded by Ben Bernstein and Dima Stopel. The pair bring extensive enterprise security expertise in both the defense and private sector—both having spent more than 10 years in the Microsoft R&D center in Israel and served in the Israel Defense Force’s (IDF) intelligence corps. Bernstein and Stopel recognized an opportunity to help enterprises get ahead of the risks and developed the Twistlock security suite to support their secure adoption.
“Enterprises are in the midst of a data center revolution,” said Ben Bernstein, CEO and co-founder of Twistlock. “Twistlock’s container security suite provides the fuel enterprises need to accelerate their ability to use containers to develop, share and scale the applications that drive their business forward. With our solution, security operation teams finally have the visibility and granular controls they need over their ‘Dockerized’ workloads.”
Twistlock addresses risk on both the host and the application containers themselves. Twistlock claims to enable enterprises to enforce security policies, monitor and audit activity, and identify and isolate threats in a container or cluster of containers. The Twistlock security suite promises to:
Monitor both static container images and runtime container applications to identify risks.
Specify security baselines to ensure the host has been hardened and the application meets certain quality and security standards before it can be pushed into production.
Protect containers deployed both in the cloud and on-premises in a virtual data center.
Keep up with the dynamic security concerns associated with the continuous integration of micro services.
Check out the full Twistlock post on ContainerJournal: Embrace Docker containers without compromising on security.