Security is a key pillar of the Docker Enterprise Edition (EE) platform. From built in features automatically configured out of the box to a new secure supply chain and flexible yet secure configurations that are portable with the app from one environment to another – enabling the most secure infrastructure and applications is paramount.
In addition to all the security features, ensuring that the Docker platform is validated against widely-accepted standards and best practices is a critical aspect of our product development as this enables companies and agencies across all industries to adopt Docker containers. The most notable of these standards is that of the Federal Information Processing Standard (FIPS) Publication 140-2, which validates and approves the use of various security encryption modules within a software system.
Today, we’re pleased to announce that the Docker EE cryptography libraries are at the “in-process” phase of the FIPS 140-2 Level 1 Cryptographic Module Validation Program.
This is just one of the many initiatives Docker is driving to support agencies in the adoption of Docker and deployment of container applications in a secure and compliant manner. In addition to starting the FIPS certification process, below are the other compliance initiatives to date:
- Introduce federal security and compliance guidance for Docker Enterprise Edition
- Support for OpenControl to further agile compliance efforts with an open sourced set of documentation for Federal agency security IT personnel.
- Azure Blueprint for Docker Enterprise Edition (Standard/Advanced) for secure configuration on Azure Government.
- Centralized access to all Docker Enterprise Edition compliance needs like NIST 800-53 and FedRAMP recommendations into a single repo.
New technology adoption and federal compliance are evolving to enable agencies to deliver software faster in support of critical missions. With that in mind, Docker hosted a panel discussion with Microsoft, GovReady and 18F at this year’s Federal Summit in May. Watch the session on-demand to learn more: