Government Security News January 2017 Digital Edition. Available on the GSN Magazine Website at www.gsnmagazine.com
Cloudera and Docker, Inc. partner to vastly improve the security of data MCLEAN, VA — December 19, 2016 — Cloudera, the global provider of the fastest, easiest, and most secure data management, analytics and machine learning platform built on the latest open source technologies, today announced that it has partnered with Docker, Inc. to provide Commercially Supported (CS) Docker Engines with a jointly developed solution to secure Docker container volumes. This integrated solution allows government agencies to share data via cryptographically secure containers as part of a partnership where Cloudera provides level one and level two technical support backed by Docker, Inc. Docker and Cloudera worked in close collaboration to meet the specific needs of government agencies. Because these agencies often have sensitive workloads where portability and security are necessary, the two companies worked together on an integration that would protect the code and data running in containerized workloads. Docker and Cloudera made sure that all data and code are protected both in transit, at rest, and at runtime. The integrated solution is based on Cloudera Navigator Encrypt running on Docker, Inc’s CS Engine. Cloudera Navigator Encrypt transparently encrypts and secures data at rest without requiring changes to applications and ensuring there is minimal performance lag in the encryption or decryption process. Advanced key management with Cloudera Navigator Key Trustee Server and process-based access controls in Navigator Encrypt enable organizations to meet compliance regulations and help protect organizations from unauthorized parties or malicious actors gaining access to encrypted data. Docker wraps software in a complete filesystem aka container that includes an application and its dependencies which allows applications to run anywhere. In addition, Docker Content Trust based on The Update Framework (TUF) provides the most secure content distribution model for verifying the creator of a specific dockerized application. Cloudera Navigator Encrypt Key Trustee Server and Client already possess Federal Information Processing Standard (FIPS) 140-2 compliance, the U.S. government 42 computer security standard used to approve cryptographic modules. The partnership with Docker, Inc. enables the pursuit of an end-to-end FIPS-validated product to include the Docker platform itself, as well as the encryption and key management platform. Docker provides an abstraction layer for Cloudera’s Navigator Encrypt and the Key Trustee Server, allowing the exchange of dockerized applications so they can be run, but not seen, modified, or tampered with. It has complete administrative separation of duties where administrators, platform owners and users, whether trusted or untrusted, cannot impact each other. Multiple points of control, application fingerprinting, and user roles and network-based authentication are included. “Cloudera is committed to delivering the highest levels of data security for Docker workloads,” said Charles Zedlewski, senior vice president, Products at Cloudera. “We are pleased to have the opportunity to bring the industry leading security controls that are already a core part of Cloudera’s business to the realm
of dockerized applications and supporting the U.S. Government with their most challenging problems.” “Docker is increasingly becoming a critical platform for Federal agencies as they modernize their applications, while making them even more secure through Docker’s isolation capabilities and content security framework,” said Nathan McCauley, Director of Security for Docker. “This partnership with Cloudera further elevates the security posture of Dockerized applications by protecting against data leaks through secure encrypted data volumes.” The joint solution is both operating system and cloud agnostic. This early access product is currently available to U.S. government agencies. About Cloudera Cloudera delivers the modern data management, analytics and machine learning platform built on the latest open source technologies. Many of the world’s leading organizations trust Cloudera to help solve their most challenging business problems with Cloudera Enterprise, the fastest, easiest and most secure data platform available for the modern world. Our customers efficiently capture, store, process and analyze vast amounts of data, empowering them to use advanced analytics and machine learning to drive business decisions quickly, flexibly and at lower cost than has been possible before. To ensure our customers are successful, we offer comprehensive support, training and professional services. Learn more at cloudera. com. Connect with Cloudera About Cloudera: cloudera.com/ content/cloudera/en/about/company-profile.html Read our blogs: blog.cloudera.com/ and vision.cloudera.com/ 43 Follow us on Twitter: twitter.com/ cloudera Visit us on Facebook: facebook. com/cloudera Join the Cloudera Community: community.cloudera.com Cloudera, Hue, and associated marks are trademarks or registered trademarks of Cloudera Inc. All other company and product names may be trademarks of their respective owners.