In today's cloud data centers and edge computing, attack surfaces have significantly increased, hacking has become industrialized, and most security control implementations are not coherent or consistent. The foundation of any data center or edge computing security strategy should be securing the platform on which data and workloads will be executed and accessed. NIST has been studying how the physical platform can be the first layer for any layered security approach and provide the initial protections to help ensure that higher-layer security controls can be trusted.
NIST announces the publication of draft NIST Internal Report (IR) 8320A, Hardware-Enabled Security: Container Platform Security Prototype. This report explains an approach based on hardware-enabled security techniques and technologies for safeguarding container deployments in multi-tenant cloud environments. It also describes a proof-of-concept implementation of the approach-a prototype-that is intended to be a blueprint or template for the general security community.
The public comment period for this draft NISTIR is now open through January 29, 2021. You can submit comments online or via email to [email protected].