Top Threats

NIST.IR.8320B Hardware-Enabled Security: Policy-Based Governance in Trusted Container Platforms

  • 1.  NIST.IR.8320B Hardware-Enabled Security: Policy-Based Governance in Trusted Container Platforms

    Posted Apr 20, 2022 11:20:00 PM
      |   view attached
    Hi All,

    NIST just published NIST.IR.8320B Hardware-Enabled Security: Policy-Based Governance in Trusted Container Platforms

    NISTIR 8320B explains an approach based on hardware-enabled security techniques and technologies for safeguarding container deployments in multi-tenant cloud environments.

    The purpose of this publication is to describe an approach for safeguarding application container deployments in multi-tenant cloud environments. This publication builds upon selected security challenges involving Infrastructure as a Service (IaaS) that are discussed in NIST Interagency or Internal Report (IR) 8320A [1], which addresses cloud computing technologies and geolocation in the form of resource asset tags. Specifically, it uses the three stages of deployment described in Sections 3, 4, and 5 of NIST IR 8320A, and additionally describes two additional stages for encrypting container images and creating data access policies for containers. It then describes a prototype implementation that was designed to address those challenges. The publication provides sufficient details about the prototype implementation so that organizations can reproduce it if desired. The publication is intended to be a blueprint or template that can be used by the general security community to validate and implement the described implementation.

    ------------------------------
    Michael Roza CPA, CISA, CIA, MBA, Exec MBA
    ------------------------------