Amazon Internet Companies to beef up container safety with new risk detection

Amazon Web Services to beef up container security with new threat detection

Hear from CIOs, CTOs, and different C-level and senior execs on knowledge and AI methods on the Way forward for Work Summit this January 12, 2022. Study extra

Amazon Internet Companies stated it’s responding to the rising want for container safety with plans to launch new risk detection capabilities for container workloads in the course of the first quarter of 2022.

On the AWS re:Invent 2021 convention in the present day, AWS Chief Data Safety Officer Stephen Schmidt stated the corporate doesn’t usually pre-announce options which are nonetheless beneath improvement. However given the rising significance of container safety, the cloud large is making an exception in revealing its new container risk detection options, he stated.

There’s clearly a “want for some new safety tooling related to this explicit house,” Schmidt stated.

Enhanced risk detection

A survey by the Cloud Native Computing Basis discovered that the usage of containers in manufacturing has surged by 300% since 2016, with 92% of organizations utilizing containers in manufacturing in 2020. That’s made containers a tempting goal for cyber attackers: a current research by Aqua Safety discovered that 50% of recent misconfigured Docker situations are attacked by botnets inside 56 minutes of being arrange.

“Because the adoption of containers skyrockets, so does the necessity for easy-to-manage and scale container safety,” Schmidt stated.

AWS has “heard that message,” he stated, and the cloud supplier is now “now growing characteristic units that tackle container environments.”

The primary new container risk detection options, launching in Q1 of 2022, will contain extending the Amazon GuardDuty risk detection service to Amazon Elastic Kubernetes Service (EKS) audit logs, he stated.

“This can present clients clever risk detection for his or her container workloads—scanning for uncommon useful resource deployments [and] issues like malicious configuration modifications, or escalation of privilege makes an attempt,” Schmidt stated.

Extra options coming

The Amazon GuardDuty capabilities are the one new container safety features being pre-announced proper now by AWS, since we “by no means need to over-promise,” he stated.

However the firm expects that protection from its Amazon Inspector for the Amazon Elastic Container Registry (ECR) will comply with, Schmidt stated. AWS additionally plans an enlargement of the Amazon Detective service that may deliver “its investigation evaluation into the container house within the close to future,” he stated.

AWS had introduced container safety updates earlier this week at re:Invent, as nicely. The corporate disclosed that Amazon Detective can now frequently assess ECR-based container workloads, along with Elastic Compute Cloud (EC2) workloads.


VentureBeat’s mission is to be a digital city sq. for technical decision-makers to realize information about transformative expertise and transact.

Our web site delivers important data on knowledge applied sciences and techniques to information you as you lead your organizations. We invite you to change into a member of our group, to entry:

  • up-to-date data on the themes of curiosity to you
  • our newsletters
  • gated thought-leader content material and discounted entry to our prized occasions, resembling Rework 2021: Study Extra
  • networking options, and extra

Turn into a member

Leave a Reply

Your email address will not be published. Required fields are marked *

Related Posts