Red Hat Delivers More Secure Containers with New Scanning Capability

New container interface supports multiple scanner integrations, including OpenSCAP and Black Duck, and builds on partner ecosystem for Red Hat OpenShift Container Platform

SAN FRANCISCO -

Red Hat, Inc. (NYSE: RHT), the world's leading provider of open source solutions, today launched a new container scanning interface to enable security partners to easily plug into RedHatOpenShiftContainerPlatform. As containers move from experiment to enterprise-reality, a key consideration is security. Today’s news builds upon RedHatsleadershipincontainersecurity. By integrating with multiple container scanners, Red Hat and its partners enable users to more easily see what’s running inside their containers and whether the latest security updates have been applied. The new container capabilities come via the latest version of Red Hat Enterprise Linux Atomic Host, which serves as the container operating system for Red Hat OpenShift Container Platform.

Icon-Red_Hat-Media_and_documents-Quotemark_Open-B-Red-RGB

While security is crucial to all industries, there is no ‘silver bullet’ for all of our customers’ needs, especially with the many varied deployment scenarios for Linux containers. We recognize this challenge, and the latest version of Red Hat Enterprise Linux Atomic Host, with its simplified scanner integration, gives enterprises the freedom to choose a container scanning technology that best meets their needs.

Tim Yeaton

senior vice president, Infrastructure Business Group, Red hat

Expanding Red Hat’s existing collaborationwithBlackDuckSoftware, Black Duck Hub is now fully integrated and supported as a container scanner. Black Duck Hub provides deep container inspection (DCI) of many open source component used in the operating system user space, as well as applications and libraries that might be added to containers by developers. The scanner maps known open source security vulnerabilities and dynamically monitors container inventory, providing alerts on any new vulnerabilities affecting the code. By running natively on Atomic Host, Black Duck Hub delivers added confidence in the security profile of all container images and components from development to test to production, all at scale.

Additionally, Red Hat Enterprise Linux Atomic Host also includes a technology preview of the OpenSCAP scanner. The Open Security Content Automation Protocol (OpenSCAP) project provides an ecosystem of tools and policies to help assess, measure and enforce IT security measures; the OpenSCAP scanner, also integrated with Atomic Host, applies these same protocols to container content, helping to more quickly identify vulnerabilities for remediation.

The new version of Atomic Host provides several other features and capabilities as well, including:

  • Updated container runtimes, offering users a choice of Docker or Open Container Initiative (OCI) run times.

  • Improved systemd integration to simplify migrating existing applications to more easily run inside containers.

  • Improved update functionality for hotfixes between full releases.

  • Graphical management to help make it easier to perform administration tasks, including updates from within Cockpit.

Webcast
Paul Cormier, president, Products and Technologies, Red Hat, will host a webcast live from Red Hat Summit to discuss today's announcement at 11:45 a.m. PT on June 28, 2016. Following remarks, press and analysts are invited to participate in a question and answer session.

To join the webcast or view the replay after the event, visit: https://vts.inxpo.com/Launch/QReg.htm?ShowKey=32847

Supporting Quote
Tim Yeaton, senior vice president, Infrastructure Business Group, Red Hat
“Our customers want the agility of containers but cannot risk their mission-critical systems and applications on unknown content or unsupported containers - a key reason behind Red Hat’s focus on container security across our portfolio. While security is crucial to all industries, there is no ‘silver bullet’ for all of our customers’ needs, especially with the many varied deployment scenarios for Linux containers. We recognize this challenge, and the latest version of Red Hat Enterprise Linux Atomic Host, with its simplified scanner integration, gives enterprises the freedom to choose a container scanning technology that best meets their needs.”

Lou Shipley, CEO, Black Duck
“In survey after survey it’s very clear that Enterprise customers are eager to embrace container technology because of its economic and productivity benefits, but those same surveys also reveal a hesitancy to adopt containers because trust and security remain open issues. With this integration Black Duck and Red Hat have taken a bigger step toward the more secure and trusted container model that we’re both committed to delivering.”

  • About Red Hat
  • Red Hat is the world's leading provider of open source software solutions, using a community-powered approach to provide reliable and high-performing cloud, Linux, middleware, storage and virtualization technologies. Red Hat also offers award-winning support, training, and consulting services. As a connective hub in a global network of enterprises, partners, and open source communities, Red Hat helps create relevant, innovative technologies that liberate resources for growth and prepare customers for the future of IT. Learn more at http://www.redhat.com.



  • Forward-Looking Statements
  • Certain statements contained in this press release may constitute "forward-looking statements" within the meaning of the Private Securities Litigation Reform Act of 1995. Forward-looking statements provide current expectations of future events based on certain assumptions and include any statement that does not directly relate to any historical or current fact. Actual results may differ materially from those indicated by such forward-looking statements as a result of various important factors, including: risks related to the ability of the Company to compete effectively; the ability to deliver and stimulate demand for new products and technological innovations on a timely basis; delays or reductions in information technology spending; the integration of acquisitions and the ability to market successfully acquired technologies and products; the effects of industry consolidation; uncertainty and adverse results in litigation and related settlements; the inability to adequately protect Company intellectual property and the potential for infringement or breach of license claims of or relating to third party intellectual property; risks related to data and information security vulnerabilities; ineffective management of, and control over, the Company's growth and international operations; fluctuations in exchange rates; and changes in and a dependence on key personnel, as well as other factors contained in our most recent Annual Report on Form 10-K (copies of which may be accessed through the Securities and Exchange Commission's website at http://www.sec.gov), including those found therein under the captions "Risk Factors" and "Management's Discussion and Analysis of Financial Condition and Results of Operations". In addition to these factors, actual future performance, outcomes, and results may differ materially because of more general factors including (without limitation) general industry and market conditions and growth rates, economic and political conditions, governmental and public policy changes and the impact of natural disasters such as earthquakes and floods. The forward-looking statements included in this press release represent the Company's views as of the date of this press release and these views could change. However, while the Company may elect to update these forward-looking statements at some point in the future, the Company specifically disclaims any obligation to do so. These forward-looking statements should not be relied upon as representing the Company's views as of any date subsequent to the date of this press release.