Containers use a shared operating system (OS) model. An attack on a vulnerability in the host OS could lead to a compromise of all containers.
Containers are not inherently unsecure, but they are being deployed in an unsecure manner by developers, with little or no involvement from security teams and little guidance from security architects. Traditional network and host-based security solutions are blind to containers.
Container security solutions protect the entire life cycle of containers from creation into production and most of the container security solutions provide pre production scanning combined with runtime monitoring and protection.
Sign up for Computerworld eNewsletters.