Methods and apparatus for generating and using security assertions associated with containers in a computing environment
US10142370B2 · kind B2 · utility
Assignee
Inventors
Key dates
| Filing date | Oct 19, 2015 |
| Grant date | Nov 27, 2018 |
| Priority date | — |
| Expiry date | Jun 5, 2036 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04L9/3247
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
Methods and apparatus are disclosed to generate a security assertion document associated with a container image, and to use the security assertion document to determine whether a container image is suitable for use to assemble a corresponding container for execution in a host environment. In an example method, the generated security assertion document includes a security assertion resulting from an assessed policy rule. In the example method, the security assertion document is separate from the container image such that the generation of the security assertion document does not alter the container image itself. In an example method, the contents of the security assertion document may be analyzed and/or verified in relation to the associated container image in connection with determining whether or not to use the container image to assemble a corresponding container for execution in the example host environment.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.