Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

Expanding Vulnerability Management to Container Security

On October 26, 2016, Tenable announced the acquisition of FlawCheck, becoming the first vulnerability management company to provide security for Docker containers, the lifeblood of many organizations’ DevOps processes.

“Information technology is undergoing a profound change due to DevOps, containers and the mass migration of operations and infrastructure to the cloud. Tenable understands that next-generation technologies bring with them a range of new security challenges, which is why we are accelerating our investment in this area.” –Renaud Deraison, Tenable CTO

Register for a Free Trial

Please register for a free trial of FlawCheck or contact your Tenable sales representative for more information. We look forward to supporting your container security journey.

Try Now

Why Containers?

This new model of rapid development and deployment uses lightweight, portable containers, enabling faster application delivery, increased IT efficiency and greater market responsiveness. Innovation accelerates as services reach customers and partners faster. From high tech and retail brands to banking, manufacturing and beyond, the breadth of applications powered by containers continues to expand every day.

Container Adoption & Usage
In a 2016 global survey, 53% of companies with at least 100 employees had either deployed or were in the process of evaluating containers. Source: Cloud Foundry Foundation

The Security Challenge

But like earlier transformational technologies, the vast potential of containers is so powerful that their adoption has outpaced security. And a key strength of containers – their ability to start up and power down almost instantly – has becomes a challenge to effective security practice. Because containers may live for just hours or days, they’re unlikely to be seen by weekly or monthly vulnerability scans, allowing vulnerabilities to persist and remain hidden to your security team.

Tenable has previously released capabilities in Nessus that enable security teams to detect running Docker hosts and enumerate the containers running on them. Nessus can also audit Docker hosts against the CIS Docker v1.6+ benchmark, helping you properly harden your container hosts. Discovering and securing Docker hosts is an important first step in the container security journey.

“The stakes for enterprise security are only growing, as containers deliver more of the world’s digital innovation every day. We built FlawCheck to address the difficulty of detecting security risks, at scale, in the world's largest data centers.” –Anthony Bettini, FlawCheck Founder & CEO

The FlawCheck Solution

Tenable continues the journey with FlawCheck, which addresses the remaining security challenges. FlawCheck stores container images and scans them as they’re built, before they can reach production. It provides vulnerability and malware detection, along with continuous monitoring of container images. By integrating with the continuous integration and continuous deployment (CI/CD) systems that build container images, FlawCheck ensures every container reaching production is secure and compliant with enterprise policy.

FlawCheck Dashboard
FlawCheck dashboard

Joining the Tenable Family

With FlawCheck, Tenable is strategically expanding the comprehensive vulnerability management and continuous monitoring capabilities it has pioneered over the years with Nessus, SecurityCenter and SecurityCenter CV. With FlawCheck in the family, Tenable is now working to bring a fully integrated container security offering to market in early 2017.

Register for a Free Trial

Please register for a free trial of FlawCheck or contact your Tenable sales representative for more information. We look forward to supporting your container security journey.

Try Now