CloudPassage is First to Support CIS Docker 1.6 Benchmark

Latest guidance for securing Docker containers now fully supported in CloudPassage Halo agile security platform

Jul 28, 2015, 08:02 ET from CloudPassage

SAN FRANCISCO, July 28, 2015 /PRNewswire/ -- CloudPassage today announced that it now includes Center for Internet Security (CIS) security benchmarks for Docker 1.6 and other operating systems as part of its CloudPassage Halo agile security platform.  CloudPassage is the first commercial security platform to provide Docker security benchmarks as an integrated part of its product. The CIS is a non-profit organization that provides information on how to securely deploy and configure various operating systems and applications. The CIS Docker 1.6 Benchmark provides prescriptive guidance for establishing a secure configuration posture for Docker containers.

Docker software has been downloaded more than 100 million times in the last year, making it the one of the fastest growing open source projects ever. Docker is becoming a key strategy for IT organizations to become more agile because it allows companies to move their applications anywhere without breaking or rewriting them. By leveraging Docker containers, large monolithic applications can be broken down into smaller, reusable services that are easier and faster to manage.

"Securing Docker containers has been problematic until now," stated Amrit Williams, CTO for CloudPassage. "Traditional security solutions simply do not work well with container-based architectures. For the first time, enterprises can embrace the agility and speed offered by Docker technology and be assured that critical assets running in containers can be secured."

CloudPassage Halo extends network security right to the workload, no matter where the workload is running or what's running on it. Halo provides comprehensive security and compliance functions previously unavailable to Docker containers: workload firewall management, configuration monitoring, strong access control, software vulnerability management and much more. Ultra lightweight CloudPassage Halo agents are deployed on every server or Docker instance, everywhere – even on live systems without reboot, making them non-intrusive to production systems. The agents send access, configuration and control information back to the CloudPassage Halo security orchestration engine, which processes the data and sends command and control instructions back to the agent.

CloudPassage is expanding its Configuration Security Monitoring library to reflect the latest CIS benchmarks for a wide variety of operating systems, including CentOS, Ubuntu and Redhat.

About CloudPassage

CloudPassage Halo® is the world's leading agile security platform that empowers enterprises to take full advantage of cloud infrastructure with the confidence that their critical business assets are protected. Halo delivers a comprehensive set of continuous security and compliance functions right where it counts -- at the workload.  Halo orchestrates security on-demand, at any scale and works in any cloud or virtual infrastructure (private, public, hybrid or virtual data center – even bare metal servers). Leading enterprises like Citrix, and Adobe use CloudPassage today to enhance their security and compliance posture, while at the same time enabling business agility. Headquartered in San Francisco, CA, CloudPassage is backed by Benchmark Capital, Meritech Capital Partners, Tenaya Capital, Shasta Ventures, Musea Ventures and other leading investors.

For more information, visit

CloudPassage® and Halo® are registered trademarks of CloudPassage, Inc.

Press Contact:
Sterling Communications — Amanda Felix,, (408) 395-5500


SOURCE CloudPassage