Software Supply Chain Security on Any Kubernetes with Mirantis Secure Registry 3.0

Michael Ward, Director, Product Marketing - Cloud Infrastructure - January 13, 2022 - , , , ,

Security and cloud infrastructure availability concerns have been in the news of late with the recent Log4j vulnerabilities and outages at some of the world’s largest public cloud providers. The security and integrity of your container-based images has never been more important.

Many have taken to Kubernetes to assist in the deployment and management of their container-based workloads, and are leveraging some form of a container registry to work in tandem to ease development and day-to-day operations. However, what happens when relying on a public cloud container registry if access to the cloud goes down? How are you able to be certain that the public registry has been updated in a timely manner with all current known vulnerabilities that may affect the images you are pulling from the registry? As Edward Ionel, Head of Developer Relations for Mirantis, highlights in his recent blog, there are many attributes to consider when making a decision on which public or private container registry to use in your infrastructure.

Mirantis Secure Registry (formerly Docker Trusted Registry) can easily be integrated into your environment to provide the core of an effective secure software supply chain. Until now, this enterprise-class capability has been limited to use with Mirantis’ Kubernetes solutions.

Now with the introduction of Mirantis Secure Registry 3.0, users of any Kubernetes distribution can benefit from its advanced security features. Mirantis Secure Registry no longer requires deployment on dedicated nodes — rather, it now runs alongside your apps in any standard distribution of Kubernetes 1.20 or above, simply through the use of standard Helm techniques. As a result, the Mirantis Secure Registry user has greater flexibility as many resources are administered by the orchestrator, rather than the registry itself.

Mirantis Secure Registry 3.0 continues to deliver on all the great enterprise-case features that make up the core of your Secure Software Supply Chain — features including:

  • Access Control
  • Image Scanning
  • Image Signing
  • Caching & Mirroring
  • Image Lifecycle Management
  • Policy-based Image Promotion

And now, these benefits are also available to users leveraging any Kubernetes distribution — providing you with more choice and more flexibility.

Existing users of earlier versions of Mirantis Secure Registry will need to reinstall the application to take advantage of the new version. To learn more about how to deploy Mirantis Secure Registry on any K8s distribution, refer to this blog by Avinash Desireddy, Senior Solutions Architect at Mirantis.

For more information on the latest changes for Mirantis Secure Registry 3.0, please refer to the product release notes, and we welcome you to give Mirantis Secure Registry a try at www.mirantis.com/trymsr.

banner-img
test
tst
tst
Cloud Native 5 Minutes at a Time: Creating, Observing, and Deleting Containers

One of the biggest challenges for implementing cloud native technologies is learning the fundamentals — especially when you need to fit your learning in a busy schedule. In this series, we’ll break down core cloud native concepts, challenges, and best practices into short, manageable exercises and explainers, so you can learn five minutes at a time. These lessons assume a basic …

Cloud Native 5 Minutes at a Time: Creating, Observing, and Deleting Containers
Cloud Native 5 Minutes at a Time: What is a Container?

One of the biggest challenges for implementing cloud native technologies is learning the fundamentals — especially when you need to fit your learning in a busy schedule. In this series, we’ll break down core cloud native concepts, challenges, and best practices into short, manageable exercises and explainers, so you can learn five minutes at a time. These lessons assume a basic …

Cloud Native 5 Minutes at a Time: What is a Container?
Deploy Mirantis Secure Registry on any Kubernetes (Minikube, EKS, GKE, K0S, etc.)

Note: this blog post was originally published by Avinash Desireddy on Medium. You can view the original post here. Docker Containers, Kubernetes, CNCF, and many other relevant projects completely changed how we package, ship, and run applications. As you all know, Kubernetes has become a defacto standard for running applications. At the same time, container registries and chart repositories play a …

Deploy Mirantis Secure Registry on any Kubernetes (Minikube, EKS, GKE, K0S, etc.)
FREE EBOOK!
Service Mesh for Mere Mortals
A Guide to Istio and How to Use Service Mesh Platforms
DOWNLOAD
Technical training
Learn Kubernetes & OpenStack from Deployment Experts
Prep for certification!
View schedule
Mirantis Webstore
Purchase Kubernetes support
SHOP NOW