Amazon Web Services to beef up container security with new threat detection

Hear from the CIO, CTO and other C-level and senior executives on data and AI strategies at the Future of Work Summit on January 12, 2022. Learn more

Amazon Web Services said it was responding to the growing need for container security with plans to launch new threat detection capabilities for container workloads during the first quarter of 2022.

At the AWS re: Invent 2021 conference today, AWS Chief Information Security Officer Stephen Schmidt said the company does not usually pre-announce features that are still under development. But given the growing importance of container security, Cloud Giant is making exceptions in revealing its new container threat detection features, he said.

There is clearly a need for some new security tooling regarding this particular space, “Schmidt said.

Advanced threat detection

A survey conducted by the Cloud Native Computing Foundation found that the use of containers in production has increased by 300% since 2016, with 92% of organizations using containers in production in 2020. That makes the container an attractive target for cyber attackers: A recent study by Aqua Security found that 50% of new falsely configured docker instances are attacked by botnets within 56 minutes of being set up.

“As container skyrockets are adopted, so is the need for easy-to-manage and scale container security,” Schmidt said.

AWS has “heard that message,” he said, and the cloud provider is now “developing a feature set addressing the container environment.”

He said the first new container threat detection features, to be launched in Q1 2022, would include extending the Amazon Guard Duty Threat Detection service to the Amazon Elastic Cubernets Service (EKS) audit log.

“This will provide customers with intelligent threat detection for their container workload – scanning for unusual resource deployments [and] Things like malicious configuration changes or increased privilege efforts, “Schmidt said.

More features are coming

Amazon Guard Duty capabilities are the only new container security features currently pre-announced by AWS, as we “never want to over-promise,” he said.

But the company expects to follow coverage from its Amazon inspector for the Amazon Elastic Container Registry (ECR), Schmidt said. AWS also plans to expand the Amazon Detective Service which will “bring its investigative analysis into container space in the near future,” he said.

AWS also announced container security updates on Re: Invent earlier this week. The company revealed that Amazon Detective can now continuously evaluate ECR-based container workloads in addition to the Elastic Compute Cloud (EC2) workload.


VentureBeat’s mission is to become a digital town square for technical decision makers to gain knowledge about transformative technology and practices. Our site delivers essential information on data technologies and strategies so you can lead your organizations. We invite you to access, to become a member of our community:

  • Up-to-date information on topics of interest to you
  • Our newsletters
  • Gated idea-leader content and discounted access to our precious events, such as Transform 2021: Learn more
  • Networking features and more

Become a member

Similar Posts

Leave a Reply

Your email address will not be published. Required fields are marked *