- Access control: Only members of your own team can access your private images.
- Server-side encryption: Those images are encrypted before they’re written to disk.
- Fast and reliable deployment: Those images are stored and cached in Google datacenters.
Though the wildly popular Docker raised $40 million in new funding to address the enterprise market, its security limitations keep large companies interested in the technology, but leery. In December it released a new version of Docker Engine with new security features.
Nevertheless, many companies prefer to stick with private cloud deployments, while the big public cloud players like Google work to shore up security and ease those fears.
In a recent report, Gartner analyst Joerg Fritsch wrote that Docker is secure enough for multi-tenant, platform-as-a-service type operations, but more controls may be required for Linux containers used across multiple trust levels, security zones, or potentially hostile tenants.
Though it’s possible to set up your own Docker registry, Steve Reed, principal engineer at online retailer zulily, an early adopter of the registry service, says Google makes it easy to integrate the registry into development and deployment workflow.