Security for a software container

Assignee

• Telefonaktiebolaget LM Ericsson (Publ) · SE

Inventors

• Johan Kristiansson · Luleå, SE
• Daniel Bergstrom · Sarver, US
• Jonas Lundberg · Luleå, SE
• Nicklas Sandgren · Luleå, SE

Key dates

Classification

• Technology area (CPC H)Electricity
• CPC primaryH04L9/50
• WIPO fieldDigital communication
• WIPO sectorElectrical engineering

Abstract

It is presented a method performed in a deployment server being configured to deploy a software container. The method comprises the steps of: receiving a trigger to deploy a software container; obtaining an image intended for the software container comprising a set of at least one module; injecting a security module in the image; obtaining a container specification of the image; configuring the security module to forward incoming communication to the set of at least one module in accordance with the obtained container specification; modifying the container specification such that the at least one service is accessed externally only via the security module and that all outgoing communication, from the set of at least one module, is directed via the security module; publishing the modified container specification in a service discovery repository; and deploying the software container on at least one execution server.