6.3 Endpoint protection platform (EPP) tools for containers (Not Scored)

Information

There is no container-aware endpoint protection platform (EPP) solution as of now. You
must rely on compensating controls to achieve the same.

Traditional EPP and encryption vendors have not yet recognized containers as an area that
they need to pursue and secure in the future. Hence, there are no suitable products at this
time. Thus, you must rely on compensating controls.

NOTE: Nessus has not performed this check. Please review the benchmark to ensure target compliance.

Solution

AppArmor, SELinux and DevOps product configurations for containers are beyond the
scope of this benchmark. You should seek guidance on specific configuration needed for
containers from their respective sources.

Impact-None.

Default Value-By default, no endpoint protection is provided to containers.

See Also

https://workbench.cisecurity.org/files/514