Securing data-at-rest in Docker and OpenShift environments

Extends Vormetric Transparent Encryption controls for data encryption, access control and data access audit logging to data within or linked to containers

Vormetric Container Security

Container technologies are bringing unprecedented benefits to organizations, but also come with new risks. Vormetric Container Security delivers critical encryption, access controls, and data access audit logging capabilities that enable organizations to meet compliance, regulatory, and best practice requirements for safeguarding data within dynamic container environments.

Containers often run with root level systems permissions (For Docker, by default – elsewhere, when specifically enabled), resulting in administrators having full access to container images and system data. Vormetric Container Security encryption with data access controls enables privileged users such as Docker or OpenShift cluster administrators to work as usual, without exposing sensitive information

Vormetric Container Security
Prevent Privileged User Abuse

Containers often run with root level systems permissions (For Docker, by default – elsewhere, when specifically enabled), resulting in administrators having full access to container images and system data. Vormetric Container Security offers encryption with data access control, enabling privileged users such as Docker or OpenShift cluster administrators to work as usual, without exposing sensitive information.

Maximize Container Advantages, Minimize Risk

Enforce data security policies in OpenShift or Docker dynamic container environments, even in the cloud with Vormetric Container Security. Maximize the benefits of using containers in any environment, without compromising data security.

Address Compliance Requirements

Address the data access control requirements of pertinent compliance and other regulatory mandates—whether you manage payment cards, healthcare records, or other sensitive assets.

Comprehensive Data Security Safeguards

Extends Vormetric Transparent Encryption, enabling security teams to establish data security controls inside of containers. With this extension, you can apply encryption, access control, and data access logging on a per-container basis. Encryption can be applied to data generated and stored locally within the container and to data mounted in the container by network file systems.

Granular Controls and Visibility

Vormetric Container Security offers the detailed visibility and control you need to comply with the most stringent policies and mandates. With this container security solution, enterprises can establish granular access policies based on specific users, processes, and resource sets within containers. Finally, this solution can establish isolation between containers, so that only authorized containers can access sensitive information.

No changes to container environments

Establish data security controls without having to make any changes to applications, containers or infrastructure sets. The container security solution even supports common container microservices deployment models, enabling single policies that can apply to all containers running on a container host instance, allowing distinct policies for each container or a mix of policy types.

Requires Vormetric Transparent Encryption as a prerequisite

Platform/Environment Support

  • Docker: 1.12.6 or later
  • OpenShift: 3.4.128 or later
  • Red Hat Enterprise Linux, 7.x
  • Can run on physical systems, VMs, and AWS EC2 instances
  • All other support specifications identical to Vormetric Transparent Encryption

Solution Brief: Vormetric Container Security

Vormetric Container Security delivers critical encryption, access controls, and logging capabilities—so that organizations can meet compliance, regulatory, and best practice requirements for safeguarding data within container environments.

Download

Demo: Vormetric Transparent Encryption

Watch this short demo to learn how Vormetric Transparent Encryption makes it easy to deploy file and database encryption with privileged user access controls and security intelligence log collection across all your server environments (physical, virtual, big data and cloud) with centralized policy and key management. This demo includes an animated demonstration, policy configuration, insider abuse demonstration, and review of the actual audit logs produced.

Play

Research Reports White Papers : Vormetric Transparent Encryption Architecture

Today’s IT and security organizations need to continue to scale their capabilities. They need to employ safeguards around larger volumes of sensitive data. They have to guard against more persistent and sophisticated threats, and they must establish these safeguards in more places. To address these expanding requirements, leading enterprises and government agencies rely on Vormetric Transparent Encryption.

Download

Related Products

Vormetric Transparent Encryption

Provides high-performance encryption and least-privileged access controls for files, directories, and volumes.

Learn More

Vormetric Transparent Encryption Live Data Transformation Extension

Enables administrators to encrypt entire file systems or databases and do key rotation—with minimal disruption.

Learn More

Vormetric Data Security Manager

Data security appliance that enables centralized, efficient management of encryption, access policies, and security intelligence.

Learn More
My concern with encryption was the overhead on user and application performance. With Thales eSecurity, people have no idea it’s even running. Karl MudraCIO
Delta Dental of Missouri
Thales eSecurity is our standard. Whenever an encryption solution is needed, the answer is always, ‘let’s start with Thales eSecurity. Damian McDonaldVice President of Global Information Security, Becton, Dickinson and Company
Watch our interactive demo Explore
Schedule a live demo Schedule
Get in contact with a specialist Contact us