Author: Karim El Chenawi, CISO, John Doe Invest
Containers technology is currently trending in the domain of digital network and application infrastructure, augmenting the growth of information technology into the virtual environment. This process of packaging multiple software and hardware into a virtual environment has to be robust and flexible for its wider implementation, but these additional features come with their own security risk. With the increased use of cloud computing, virtual machines have promoted many software applications that provide containerization as a service, out of which two applications, i.e., Docker and Kubernetes, are discussed in this manuscript. The container architecture of both Docker and Kubernetes is discussed along with their related vulnerabilities and available security solutions.