Saturday, January 25, 2020
  • Daniel Stori’s ‘To Save The DevOps World’
  • DEF CON 27, Voting Village – Kate Trimble’s ‘Ideas Whose Time Has Come: CVD, SBOM And SOTA’
  • Synopsys adds world-class security to Finastra’s banking app ecosystem FusionFabric.cloud
  • Personal Online Security – Account Management
  • Ryuk Ransomware — Malware of the Month, January 2020

Security Boulevard

The Home of the Security Bloggers Network

Community Chats Webinars Library
  • Home
    • Cybersecurity News
    • Features
    • Industry Spotlight
    • News Releases
  • Security Bloggers Network
    • Latest Posts
    • Contributors
    • Syndicate Your Blog
    • Write for Security Boulevard
  • Webinars
    • Upcoming
    • On-Demand
  • Chat
    • Security Boulevard Chat
    • Marketing InSecurity Podcast
  • Library

  • Analytics
  • AppSec
  • CISO
  • Cloud
  • DevOps
  • GRC
  • Identity
  • Incident Response
  • IoT / ICS
  • Threats / Breaches
  • More
    • Blockchain / Digital Currencies
    • Careers
    • Cyberlaw
    • Mobile
    • Social Engineering
  • Humor
Analytics & Intelligence DevOps Network Security Security Bloggers Network 

Home » Cybersecurity » Analytics & Intelligence » Clarifying the Misconceptions: Monitoring and Auditing for Container Security

Clarifying the Misconceptions: Monitoring and Auditing for Container Security

by David Bisson on October 11, 2018

An effective container security strategy consists of many parts. Organizations should first secure the build environment using secure code control along with build tools and controllers. Next, they should secure the contents of their containers using container validation, code analysis and security unit tests. Finally, they should develop a plan to protect their containers in production systems by focusing on runtime security, platform security and orchestration manager security.

But container security doesn’t end there. An effective security program consists of two other items, as well. These are monitoring and auditing.

Monitoring

All the container security processes mentioned above employ preventative security controls. These measures address known attack vectors with well-understood responses like vulnerability scans and encryption. But those and other security practices can only go so far, for they are designed to solve known issues. When it comes to detecting unexpected concerns, organizations can turn to monitoring to discover the unexpected stuff, track events in the environment and detect what’s broken.

Most monitoring tools begin by collecting events like requests for hardware resources and IP-based communication. They then examine them relative to the organization’s security policies. Towards this end, it’s best to use a monitoring solution that combines deterministic white and black list policies with dynamic behavior detection. This gives organizations the best of both worlds, allowing them to detect simple policy violations and unexpected variations.

For organizations to evaluate a monitoring tool, they should look to the following criteria:

  • Deployment model: How does the product collect events? Does it use an agent embedded in the host operating system or a privileged container-based monitor?
  • Policy management: How easy is it to build new policies or modify existing ones?
  • Behavioral analysis: What behavioral analysis options are there? How flexible are they?
  • Activity blocking: Does the solution provide (Read more...)

*** This is a Security Bloggers Network syndicated blog from The State of Security authored by David Bisson. Read the original post at: https://www.tripwire.com/state-of-security/devops/clarifying-the-misconceptions-monitoring-and-auditing-for-container-security/

October 11, 2018October 11, 2018 David Bisson auditing, Container Security, DEVOPS, Featured Articles, Monitoring
  • ← XKCD, Internal Monologues
  • 5 Ways Attackers Are Targeting the Healthcare Industry →
Featured Blog

Enzoic

Automate Password Policy & NIST Password Guidelines

Enzoic

7 Cybersecurity Predictions for 2020

Enzoic

HITRUST & PASSWORDS: 7 Important Password Policies for HITRUST

Enzoic

Cybersecurity Trends to Watch in 2020

Subscribe to our Newsletters

Get breaking news, free eBooks and upcoming events delivered to your inbox.
  • View Security Boulevard Privacy Policy

Most Read on the Boulevard

Who Should the CISO Report To in 2020?
Best Practices in Database Security Planning
Security Compass CEO Sets DevSecOps Strategy
5 Ways to Get the Most From Your PAM Program
DevOps Chats: Security for Developers, With ShiftLeft
Malicious JavaScript Used in WP Site/Home URL Redirects
Q&A On Big Telnet IoT Data Leak | Avast
Why is U.S. infrastructure vulnerable? Its software is vulnerable
Evolving Threat series — Infiltrating Python’s Software Supply Chain
2020 And Beyond: Idaptive’s Predictions and Expectations for the New Decade

Upcoming Webinars

Feb 04

From Dystopia to Opportunity: Stories from the Future of Cybersecurity

February 4 @ 1:00 pm - 2:00 pm
Feb 05

Top Cybersecurity Threats and How SIEM Protects Against Them

February 5 @ 1:00 pm - 2:00 pm
Feb 14

The Role of Security Technologists in Public Policy

February 14 @ 11:00 am - 12:00 pm
Feb 25

New Paradigms for the Next Era of Security

February 25 @ 1:00 pm - 2:00 pm

More Webinars

Download Free eBook

Open Source Security: Weighing the Pros and Cons

Recent Security Boulevard Chats

  • Cloud, DevSecOps and Network Security, All Together?
  • Security-as-Code with Tim Jefferson, Barracuda Networks
  • ASRTM with Rohit Sethi, Security Compass
  • Deception: Art or Science, Ofer Israeli, Illusive Networks
  • Tips to Secure IoT and Connected Systems w/ DigiCert

Industry Spotlight

IT Security: Detection Doesn’t Equal Protection
Analytics & Intelligence Cybersecurity Industry Spotlight Security Boulevard (Original) 

IT Security: Detection Doesn’t Equal Protection

January 24, 2020 Bob Noel | Yesterday 0
5 Ways to Prevent Data Leakage
Cybersecurity Data Security Industry Spotlight Security Boulevard (Original) 

5 Ways to Prevent Data Leakage

January 23, 2020 Eric Williams | 2 days ago 0
5 Ways to Get the Most From Your PAM Program
Cybersecurity Identity & Access Industry Spotlight Security Boulevard (Original) 

5 Ways to Get the Most From Your PAM Program

January 22, 2020 Anusha KM | 3 days ago 0

Top Stories

Microsoft Leaks 250M Customer Details in Azure Fat-Finger Faux Pas
Cloud Security Cybersecurity Data Security Featured Identity & Access News Security Boulevard (Original) Spotlight 

Microsoft Leaks 250M Customer Details in Azure Fat-Finger Faux Pas

January 23, 2020 Richi Jennings | 1 day ago 0
Security Compass CEO Sets DevSecOps Strategy
Cybersecurity DevOps Featured News Security Boulevard (Original) Spotlight 

Security Compass CEO Sets DevSecOps Strategy

January 21, 2020 Michael Vizard | 4 days ago 0
Keep Telnet Off the Internet – Here’s Why
Cybersecurity Data Security DevOps Featured Identity & Access IoT & ICS Security Network Security News Security Boulevard (Original) Spotlight 

Keep Telnet Off the Internet – Here’s Why

January 20, 2020 Richi Jennings | Jan 20 0

Security Humor

via Daniel Stori , crafting comics at turnoff.us

Daniel Stori’s ‘To Save The DevOps World’

Join the Community

  • Add your blog to Security Bloggers Network
  • Write for Security Boulevard
  • Bloggers Meetup and Awards
  • Ask a Question
  • Email: info@securityboulevard.com

Useful Links

  • About
  • Media Kit
  • Sponsors Info
  • Copyright
  • TOS
  • Privacy Policy
  • DMCA Compliance Statement

Other Mediaops Sites

  • Container Journal
  • DevOps.com
  • DevOps Connect
  • DevOps Institute
Copyright © 2020 MediaOps Inc. All rights reserved.

Our website uses cookies. By continuing to browse the website you are agreeing to our use of cookies. For more information on how we use cookies and how you can disable them, please read our Privacy Policy.