Amazon Net Providers to beef up container safety with new menace detection

Amazon Net Providers mentioned it’s responding to the rising want for container safety with plans to launch new menace detection capabilities for container workloads through the first quarter of 2022.

On the AWS re:Invent 2021 convention right this moment, AWS chief data safety officer Stephen Schmidt mentioned the corporate doesn’t sometimes pre-announce options which might be nonetheless beneath improvement. However given the rising significance of container safety, the cloud big is making an exception in revealing its new container menace detection options, he mentioned.

There’s clearly a “want for some new safety tooling related to this explicit house,” Schmidt mentioned.

Enhanced menace detection

A survey by the Cloud Native Computing Basis discovered that the usage of containers in manufacturing has surged by 300% since 2016, with 92% of organizations utilizing containers in manufacturing in 2020. That’s made containers a tempting goal for cyber attackers: A current research by Aqua Safety discovered that 50% of recent misconfigured Docker situations are attacked by botnets inside 56 minutes of being arrange.

“Because the adoption of containers skyrockets, so does the necessity for easy-to-manage and scale container safety,” Schmidt mentioned. AWS has “heard that message,” he mentioned, and the cloud supplier is “now growing function units that deal with container environments.”

The primary new container menace detection options, launching in Q1 of 2022, will contain extending the Amazon GuardDuty menace detection service to Amazon Elastic Kubernetes Service (EKS) audit logs, he mentioned.

“This may present prospects clever menace detection for his or her container workloads — scanning for uncommon useful resource deployments [and] issues like malicious configuration modifications, or escalation of privilege makes an attempt,” Schmidt mentioned.

Extra options coming

The Amazon GuardDuty capabilities are the one new container security measures being pre-announced proper now by AWS, since we “by no means need to over-promise,” he mentioned. However the firm expects that protection from its Amazon Inspector for the Amazon Elastic Container Registry (ECR) will comply with, Schmidt mentioned. AWS additionally plans an growth of the Amazon Detective service that can deliver “its investigation evaluation into the container house within the close to future,” he mentioned.

AWS had introduced container safety updates earlier this week at re:Invent, as properly. The corporate disclosed that Amazon Inspector can now frequently assess ECR-based container workloads, along with Elastic Compute Cloud (EC2) workloads.