Categories: CloudVirtualisation

Docker Buffs Container Security With Yubico Partnership

Container giant Docker has partnered with an online identity protection provider to beef up security of containers.

The deal with Yubico was announced this morning at DockerCon 2015, held in Barcelona, and is related to Yubico’s Yubikey touch-to-sign feature.

The Yubikey 4 is Yubico’s new flagship product, and features a revamped hardware and software stack, allowing Docker to integrate seamlessly provide the best security for Docker image signing.

Simple touch

“Our collaboration with Yubico adds to our growing portfolio of container security capabilities, enabling developers to sign their code with a simple touch,” said Scott Johnston, SVP of Product Management, Docker.

“Our ability to ensure security while maintaining a consistent developer experience is paramount, and this solution helps us and our users achieve both.”

California-based Yubico said that the capability that comes with the Yubikey technology is the first hardware signing key to provide content integrity for containers that are part of Docker Content Trust, and it enables secure software lifecycle development for Docker developers, sysadmins, and third-party ISVs.

“We think it’s slick, and cool, and the future of hardware-backed keys,” said Yubico.

“This is an important milestone for Yubico and our community as we move beyond authentication to address another area in which the YubiKey shines, using our hardware to perform cryptographic sign operations,” said Jerrod Chong, VP, Solutions Engineering, Yubico.

“Having root keys stored in the secure element of the YubiKey means attackers cannot duplicate the keys and forge sign operations; insecure storage of keys in software modules is often the root cause for many of the vulnerabilities found in software packages.”

Technical information on how YubiKey 4 can be implemented can be found on Docker’s blog post here.

Take our data breaches of 2015 quiz here!

Ben Sullivan

Ben covers web and technology giants such as Google, Amazon, and Microsoft and their impact on the cloud computing industry, whilst also writing about data centre players and their increasing importance in Europe. He also covers future technologies such as drones, aerospace, science, and the effect of technology on the environment.

Recent Posts

Ericsson To Cut 1,200 Jobs in Sweden Amid ‘Challenging’ Market

Swedish telecoms giant Ericsson blamed “challenging mobile networks market” and “further volume contraction” for job…

5 hours ago

FTX’s Sam Bankman-Fried Sentenced To 25 Years In Prison For $8bn Fraud

Dramatic downfall. Sam Bankman-Fried sentenced to 25 years in prison for masterminding $8bn fraud that…

6 hours ago

Elon Musk Orders FSD Demo For Every Tesla US Sale

Fallout avoidance? Tesla buyers in the US must be shown how to use the FSD…

7 hours ago

Amazon Pumps Another $2.75 Billion Into Anthropic

Amazon completes its $4bn investment into AI firm Anthropic, after providing an additional $2.75bn in…

8 hours ago

The Sustainability of AI

While AI promises unparalleled efficiency, productivity, and innovation, questions regarding its environmental impact loom large.…

11 hours ago

Trump’s Truth Social Makes Successful Market Debut

Shares in Donald Trump’s social media company rose about 16 percent after first day of…

11 hours ago