The NIST (National Institute of Standards and Technology, part of the U.S. Dept. of Commerce) has released a container security guide (NIST SP 800-190) to provide practical recommendations for addressing container environments' specific security challenges. It covers the major risks and countermeasures that organizations should consider deploying as best practices.
Specifically, the key countermeasures introduced by NIST that are addressed in this guide include:
- 4.1 Image Countermeasures
- 4.2 Registry Countermeasures
- 4.3 Orchestrator Countermeasures
- 4.4 Container Countermeasures
- 4.5 Host OS Countermeasures
Security professionals are provided with an actionable checklist of the practical steps and controls they need to apply in order to comply with NIST recommendations, and explains how the Aqua Container Security Platform addresses each requirement.