home.aspx

 
.

ENFORCING IMMUTABILITY AND LEAST PRIVILEGE TO SECURE CONTAINERIZED APPLICATIONS ON OPENSHIFT

One of the benefits of using containers, especially in microservices-based applications, is they make it easier to secure applications via runtime immutability—or never-changing—and applying least-privilege principles that limit what a container can do. With immutability, every attempt to change the runtime environment is interpreted as an anomaly. And, thanks to containers’ simplicity, it is easier to predict their behavior in the application context and create a tight security envelope, allowing them to perform only their required function and preventing behaviors outside that scope.