DevOps organizations are increasing turning to container environments to meet the demand for faster, more agile software delivery. Container orchestration presents the most effective way to manage the operational challenges as these production environments scale. However, large-scale container deployments present a new array of security challenges, including how to properly manage open source security risk. A 2017 451 research report recently identified security as the single biggest hurdle to container adoption.
The challenges of managing security risk increase in scope and complexity with the size of your deployment and the number of open source software components that are a part of your application code base. In 2017, dozens of new CVEs were reported every day, making it essential to have good visibility into and control over the open source in use in order to understand if any known vulnerabilities are present.
Join experts from Red Hat and Black Duck as they share the latest insights and recommendations for securing open source in your containers. You’ll learn:
- The role of containers in addressing some of the problems faced by teams moving to DevOps
- How OpenShift enhances that solution by answering questions of networking, image registries, deployment automation, application lifecycle, etc.
- Why container environments present new application security challenges, including those posed by open source
- How to scan applications running in containers to identify open source and map against known vulnerabilities
- Best practices and methodologies for deploying secure containers with trust