Docker Launches Hardened Images, Intensifying Secure Container Market
a year ago
- #Container Security
- #DevOps
- #Docker
- Docker launches Docker Hardened Images (DHI), a curated catalog of security-hardened, enterprise-grade container images.
- DHI features include minimal and continuously maintained images, integrated security, distroless and non-root by default, compliance-ready components, and availability across multiple distros.
- Docker partners with companies like Cloudsmith, GitLab, JFrog, Microsoft, Neo4j, Sonatype, and Wiz to support the DHI ecosystem.
- DHI is seen as a major step forward in software supply chain assurance, leveraging Docker's trust and scale in the developer ecosystem.
- Docker and Chainguard previously formed a strategic partnership to offer secure container images via Docker Hub.
- Key differences between Docker and Chainguard include Docker's integration with existing workflows and Chainguard's focus on zero CVEs and rapid remediation.
- Other players in the secure container market include Red Hat, Wiz, RapidFort, and Canonical.
- Creating truly secure images with minimal CVEs remains challenging, as highlighted by Chainguard's report on hardened container images.