FirstCity
Welcome to First City University College Library iPortal | library@firstcity.edu.my | +603-7735 2088 (Ext. 519)
Amazon cover image
Image from Amazon.com

Securing Docker : learn how to secure your Docker environment and keep your environments secure irrespective of the threats out there / Scott Gallagher.

By: Material type: TextTextSeries: Community experience distilledPublisher: Birmingham, UK : Packt Publishing, 2016Description: 1 online resource : illustrationsContent type:
  • text
Media type:
  • computer
Carrier type:
  • online resource
ISBN:
  • 9781785881961
  • 1785881965
Subject(s): Genre/Form: Additional physical formats: Print version:: No titleDDC classification:
  • 005.3 23
LOC classification:
  • QA76.76.A5
Online resources:
Contents:
Cover ; Copyright; Credits; About the Author; About the Reviewer; www.PacktPub.com; Table of Contents; Preface; Chapter 1: Securing Docker Hosts; Docker host overview; Discussing Docker host; Virtualization and isolation; Attack surface of Docker daemon; Protecting the Docker daemon; Securing Docker hosts; Docker Machine; SELinux and AppArmor; Auto-patching hosts; Summary; Chapter 2 : Securing Docker Components; Docker Content Trust; Docker Content Trust components; Signing images; Hardware signing; Docker Subscription; Docker Trusted Registry; Installation; Securing Docker Trusted Registry
AdministeringWorkflow; Docker Registry; Installation; Configuration and security; Summary; Chapter 3 : Securing and Hardening Linux Kernels; Linux kernel hardening guides; SANS hardening guide deep dive; Access controls; Distribution focused; Linux kernel hardening tools; Grsecurity; Lynis; Summary; Chapter 4 : Docker Bench for Security; Docker security -- best practices; Docker -- best practices; CIS guide; Host configuration; Docker daemon configuration; Docker daemon configuration files; Container images/runtime; Docker security operations; The Docker Bench Security application
Running the toolRunning the tool -- host configuration; Running the tool -- Docker daemon configuration; Running the tool -- Docker daemon configuration files; Running the tool -- container images and build files; Running the tool -- container runtime; Running the tool -- Docker security operations; Understanding the output; Understanding the output -- host configuration; Understanding the output -- the Docker daemon configuration; Understanding the output -- the Docker daemon configuration files; Understanding the output -- container images and build files; Understanding the output -- container runtime
Understanding the output -- Docker security operationsSummary; Chapter 5 : Monitoring and Reporting Docker Security Incidents; Docker security monitoring; Docker CVE; Mailing lists; Docker security reporting; Responsible disclosure; Security reporting; Additional Docker security resources; Docker Notary; Hardware signing; Reading materials; Awesome Docker; Summary; Chapter 6 : Using Docker's Built-in Security Features; Docker tools; Using TLS; Read-only containers; Docker security fundamentals; Kernel namespaces; Control groups; Linux kernel capabilities; Containers versus virtual machines
Summary: Annotation Learn how to secure your Docker environment and keep your environments secure irrespective of the threats out thereAbout This Book Gain confidence in using Docker for containerization without compromising on security This book covers different techniques to help you develop your container security skills It is loaded with practical examples and real-world scenarios to secure your container-based applicationsWho This Book Is ForThis book is for developers who wish to use Docker as their testing platform as well as security professionals who are interested in securing Docker containers. You must be familiar with the basics of Docker.What You Will Learn Find out how to secure your Docker hosts and nodes Secure your Docker components Explore different security measures/methods for Linux kernels Install and run the Docker Bench security application Monitor and report security issues Familiarize yourself with third-party tools such as Traffic Authorization, Summon, sVirt, and SELinux to secure your Docker environmentIn DetailWith the rising integration and adoption of Docker containers, there is a growing need to ensure their security.The purpose of this book is to provide techniques and enhance your skills to secure Docker containers easily and efficiently. The book starts by sharing the techniques to configure Docker components securely and explore the different security measures/methods one can use to secure the kernel.Furthermore, we will cover the best practices to report Docker security findings and will show you how you can safely report any security findings you come across. Toward the end, we list the internal and third-party tools that can help you immunize your Docker environment.By the end of this book, you will have a complete understanding of Docker security so you are able to protect your container-based applications.Style and approachThis book is your one-stop solution to resolve all your Docker security concerns. It will familiarize you with techniques to safeguard your applications that run on Docker containers.
Star ratings
    Average rating: 0.0 (0 votes)
No physical items for this record

Description based on online resource; title from cover (viewed April 12, 2016).

Includes index.

Annotation Learn how to secure your Docker environment and keep your environments secure irrespective of the threats out thereAbout This Book Gain confidence in using Docker for containerization without compromising on security This book covers different techniques to help you develop your container security skills It is loaded with practical examples and real-world scenarios to secure your container-based applicationsWho This Book Is ForThis book is for developers who wish to use Docker as their testing platform as well as security professionals who are interested in securing Docker containers. You must be familiar with the basics of Docker.What You Will Learn Find out how to secure your Docker hosts and nodes Secure your Docker components Explore different security measures/methods for Linux kernels Install and run the Docker Bench security application Monitor and report security issues Familiarize yourself with third-party tools such as Traffic Authorization, Summon, sVirt, and SELinux to secure your Docker environmentIn DetailWith the rising integration and adoption of Docker containers, there is a growing need to ensure their security.The purpose of this book is to provide techniques and enhance your skills to secure Docker containers easily and efficiently. The book starts by sharing the techniques to configure Docker components securely and explore the different security measures/methods one can use to secure the kernel.Furthermore, we will cover the best practices to report Docker security findings and will show you how you can safely report any security findings you come across. Toward the end, we list the internal and third-party tools that can help you immunize your Docker environment.By the end of this book, you will have a complete understanding of Docker security so you are able to protect your container-based applications.Style and approachThis book is your one-stop solution to resolve all your Docker security concerns. It will familiarize you with techniques to safeguard your applications that run on Docker containers.

Cover ; Copyright; Credits; About the Author; About the Reviewer; www.PacktPub.com; Table of Contents; Preface; Chapter 1: Securing Docker Hosts; Docker host overview; Discussing Docker host; Virtualization and isolation; Attack surface of Docker daemon; Protecting the Docker daemon; Securing Docker hosts; Docker Machine; SELinux and AppArmor; Auto-patching hosts; Summary; Chapter 2 : Securing Docker Components; Docker Content Trust; Docker Content Trust components; Signing images; Hardware signing; Docker Subscription; Docker Trusted Registry; Installation; Securing Docker Trusted Registry

AdministeringWorkflow; Docker Registry; Installation; Configuration and security; Summary; Chapter 3 : Securing and Hardening Linux Kernels; Linux kernel hardening guides; SANS hardening guide deep dive; Access controls; Distribution focused; Linux kernel hardening tools; Grsecurity; Lynis; Summary; Chapter 4 : Docker Bench for Security; Docker security -- best practices; Docker -- best practices; CIS guide; Host configuration; Docker daemon configuration; Docker daemon configuration files; Container images/runtime; Docker security operations; The Docker Bench Security application

Running the toolRunning the tool -- host configuration; Running the tool -- Docker daemon configuration; Running the tool -- Docker daemon configuration files; Running the tool -- container images and build files; Running the tool -- container runtime; Running the tool -- Docker security operations; Understanding the output; Understanding the output -- host configuration; Understanding the output -- the Docker daemon configuration; Understanding the output -- the Docker daemon configuration files; Understanding the output -- container images and build files; Understanding the output -- container runtime

Understanding the output -- Docker security operationsSummary; Chapter 5 : Monitoring and Reporting Docker Security Incidents; Docker security monitoring; Docker CVE; Mailing lists; Docker security reporting; Responsible disclosure; Security reporting; Additional Docker security resources; Docker Notary; Hardware signing; Reading materials; Awesome Docker; Summary; Chapter 6 : Using Docker's Built-in Security Features; Docker tools; Using TLS; Read-only containers; Docker security fundamentals; Kernel namespaces; Control groups; Linux kernel capabilities; Containers versus virtual machines

eBooks on EBSCOhost EBSCO eBook Subscription Academic Collection - Worldwide