Hear from CIOs, CTOs, and different C-level and senior execs on information and AI methods on the Way forward for Work Summit this January 12, 2022. Learn more
Amazon Net Providers mentioned it’s responding to the rising want for container safety with plans to launch new menace detection capabilities for container workloads throughout the first quarter of 2022.
On the AWS re:Invent 2021 convention at this time, AWS chief info safety officer Stephen Schmidt mentioned the corporate doesn’t sometimes pre-announce options which are nonetheless underneath growth. However given the rising significance of container safety, the cloud large is making an exception in revealing its new container menace detection options, he mentioned.
There’s clearly a “want for some new safety tooling related to this explicit area,” Schmidt mentioned.
Enhanced menace detection
A survey by the Cloud Native Computing Basis discovered that the usage of containers in manufacturing has surged by 300% since 2016, with 92% of organizations utilizing containers in manufacturing in 2020. That’s made containers a tempting goal for cyber attackers: A current research by Aqua Safety discovered that 50% of recent misconfigured Docker cases are attacked by botnets inside 56 minutes of being arrange.
“Because the adoption of containers skyrockets, so does the necessity for easy-to-manage and scale container safety,” Schmidt mentioned. AWS has “heard that message,” he mentioned, and the cloud supplier is “now growing characteristic units that handle container environments.”
The primary new container menace detection options, launching in Q1 of 2022, will contain extending the Amazon GuardDuty menace detection service to Amazon Elastic Kubernetes Service (EKS) audit logs, he mentioned.
“This may present clients clever menace detection for his or her container workloads — scanning for uncommon useful resource deployments [and] issues like malicious configuration modifications, or escalation of privilege makes an attempt,” Schmidt mentioned.
Extra options coming
The Amazon GuardDuty capabilities are the one new container security measures being pre-announced proper now by AWS, since we “by no means wish to over-promise,” he mentioned. However the firm expects that protection from its Amazon Inspector for the Amazon Elastic Container Registry (ECR) will observe, Schmidt mentioned. AWS additionally plans an growth of the Amazon Detective service that may deliver “its investigation evaluation into the container area within the close to future,” he mentioned.
AWS had introduced container safety updates earlier this week at re:Invent, as properly. The corporate disclosed that Amazon Inspector can now regularly assess ECR-based container workloads, along with Elastic Compute Cloud (EC2) workloads.
VentureBeat’s mission is to be a digital city sq. for technical decision-makers to achieve information about transformative know-how and transact.
Our web site delivers important info on information applied sciences and techniques to information you as you lead your organizations. We invite you to change into a member of our group, to entry:
- up-to-date info on the topics of curiosity to you
- our newsletters
- gated thought-leader content material and discounted entry to our prized occasions, reminiscent of Transform 2021: Learn More
- networking options, and extra