Thursday, December 6, 2018

Protect Linux containers running in IaaS with Azure Security Center


We are living in a world where business solutions are converting their applications to be container based. Containers are gradually increasing its popularity and people keen to move to containers and can grab some advantages of it. There are advantages for both developers and admins. Quick deployments, Fast Iterations are few of them. But the thing is when users scale their containers there must be a security system to overcome security problems and protect containers.
Azure Security Center, the hybrid security management and threat preventing center is equipped with capabilities to secure the Linux containers. 

1.     Visibility to the containers hosted on IaaS Linux machines

There is a new tab to display all virtual machines with Docker.
Source: Azure Blog

Information related to the containers on the machine, such as Docker version and the number of images running on the host are among the additional information provided via the Azure Security Center. 


Source: Azure Blog

2. CIS benchmark based security recommendations

By using security center AI technology Security center scans (Reads) user’s Docker configurations and it detects automatically if there is any misconfiguration. And if there is a visible way to view those misconfigurations and users can add quick / hot fixes to those breaches. Basically Rules are getting failed and those can be fix on time because of this feature. Docker configurations will be always assessed and will update to latest as soon as possible. 
Source: Azure Blog


3. 
Detecting incoming threats real time

Real-time threat detection is searching for threats for the containers using Linux machines, AuditD component
If a Docker/ Container behave suspiciously there will be a Secure Shell (SSH) running inside the container. To do this Docker or container should be privileged. Once issues are identified those will be listed down to user and he can apply the fixes as needed.
This is an exceptional feature which users can detect issues real time and fix at the time.

Source: Azure Blog




1 comment: