Docker's swarmkit integrates multiple secure mechansims including one known as Transparent Root Rotation.
AUSTIN, Texas — There are multiple container orchestration systems in the market today, but according to Diogo Monica, security lead at Docker Inc, Docker Swarm is the most secure.
Monica detailed his views in a highly-rated session at the DockerCon 17 conference here titled Secure Substrate: Least Privilege Container Deployment.
Monica explained that the swarmkit is a least-privilege container orchestrator. While there are many different security capabilities in swarmkit, there is one in particular that sets it apart and is the reason why Monica is confident, it is the world's most secure container orchestrator.
The feature is called Transparent Root Rotation.
"For security engineers, there is a lot of academic design that usually ends in a root of trust," Monica said. "The root of trust for a public key infrastructure approach like swarmkit, is usually the root CA...(continued)