CoreOS all set to Launch Clair to Monitor Container Security

By CIOReview | Wednesday, November 18, 2015

FREMONT, CA; CoreOS is currently working on Clair, a tool that makes a regular surveillance on containers’ security. Clair is an Application Program Interface (API) - driven Analysis service. It is an open source project, as CoreOS wants to make their security tools available to all users.  , reports Steven J. Vaughan-Nichols for ZDNet

Clair provides deep understanding of vulnerabilities in the containers and also performs on-going detection. Quay, the CoreOS registry of container images is embedded with the new security   service that scans the images for vulnerabilities. While performing Internal Testing it is found that the security hole in the Simple OpenSSL program affects millions of websites. Quay identifies that nearly 80 percent of containers have major vulnerabilities, such as Heartbleed. The upcoming Quay security scanning feature works on this drawback and aims at providing fundamental security to users.

The upcoming new Quay Security Scanning Feature identifies the presence or existence of the vulnerabilities in the containers and makes a report on it. It’s  scanning level is high such that, each time when the image is pushed into Quay it checks for vulnerabilities and notifies the level of vulnerabilities whether high, medium or low, thereby taking necessary steps to nullify them.