Docker Content Trust

A Secure Supply Chain for Kubernetes, Part 2

Jenny Fong
Mar 15 2018

Two weeks ago we shared how the upcoming release of Docker Enterprise Edition (Docker EE) is able to secure the software supply chain for Kubernetes; just as it does for Docker Swarm through a combination of scanning for vulnerabilities and implementing...

Securing the Enterprise Software Supply Chain Using Docker

Docker Security Team
Aug 23 2016

At Docker we have spent a lot of time discussing runtime security and isolation as a core part of the container architecture. However that is just one aspect of the total software pipeline. Instead of a one time flag or setting, we need to approach security as...

Docker Content Trust Gets Hardware Signing

Diogo Mónica
Nov 16 2015

Three months ago we launched Docker Content Trust, integrating the guarantees from The Update Framework (TUF) into Docker using Notary, an open source tool that provides trust over any content. Today we’re incredibly excited to announce the support of hardware based...