The National Cybersecurity Center of Excellence (NCCoE) within the National Institute of Standards and Technology (NIST) has issued a draft internal report on an approach based on hardware-enabled security to help protect application containers in multi-tenant cloud environments.
NCCoE said Monday that the document also provides information about the prototype implementation that the general security community can use as a template or blueprint.
The document also describes the three stages of the prototype implementation. Stage 0 focuses on platform attestation and measured worker node launch. Stage 1 deals with trusted workload placement, while Stage 2 focuses on asset tagging and trusted location.
Comments and feedback on the draft report “Hardware-Enabled Security: Container Platform Security Prototype” are due Jan. 29th.