Thales says that Vormetric Transparent Encryption now helps to better secure Red Hat OpenShift Container Platform deployments, in addition to its existing support for Docker use cases. Vormetric Transparent Encryption is designed to ensure only authorised containers and processes can access sensitive data within dynamic container environments. The solution provides encryption, access control and data access logging on a per-container basis to address compliance and best-practice requirements for safeguarding data.
Over the past five years, container environments have grown in popularity among enterprises. According to the 2017 Thales Data Threat Report, Advanced Technology Edition, 87% of respondents have plans to use containers this year, with 40% already in production deployment. But with container adoption growing among surveyed development teams, they are now on the radar of cybercriminals as a new attack target. Many organisations utilising containers must also demonstrate that they are complying with data privacy and security mandates within the container environment.
To help customers guard against unauthorised access to data within containers and meet compliance demands, Vormetric Transparent Encryption offers a Container Security Extension designed to
- encrypt and control access to data by policy within container environments at both the system level, for LDAP/AD users and groups and for container users;
- segregate data from other containers and administrators using shared storage;
- isolate and secure data in DevOps environments through encryption and access control; and
- provide container-level data access audit logs for insights into data access attempts.
Peter Galvin, VP of Strategy at Thales eSecurity says:
“While security was cited as the number one barrier to container adoption in our Advanced Technology Data Threat Report, respondents also expressed an interest in embracing and willingness towards deploying encryption. With Vormetric Transparent Encryption, organisations can enforce security policies across dynamic container environments as well as within multi-tenant cloud and virtual environments with centralised policy and FIPS compliant key management. The solution empowers them to take advantage of the considerable business benefits containers can provide without compromising data integrity.”