Mirantis Secure Registry
Enterprise Grade Container Registry Solutions
Mirantis Secure Registry provides an enterprise grade container registry solution that can be easily integrated to provide the core of an effective secure software supply chain.
Formerly Docker Trusted Registry (DTR), Mirantis Secure Registry continues to offer secure Docker image storage to build, ship, and run your applications. All while ensuring secure access, automated CVE scanning, and image signing.
Image scanning & signing Secure software supply chain Docker image sharing
Secure Container Registries Everywhere
Security is often an afterthought during application development and lifecycle management. Images can contain access vulnerabilities, putting your cloud native environments at risk. With Mirantis Secure Registry you can securely store, share and manage Docker images in your own private container registry to automate the security of your software supply chain. Trust the provenance and content of your applications and ensure a secure separation of concerns with Mirantis Secure Registry. Our comprehensive, built-in security enables you to verify and trust the automated operations and integration with CI/CD to speed up application testing and delivery.
Secure your Docker Images using any Kubernetes
Mirantis Secure Registry runs alongside your other apps in any standard Kubernetes cluster 1.20 and above distribution and is deployed as a Helm chart.
Automated Security for Cloud Native Environments
Secure artifacts with policies and role-based access control credentials to ensure your container images are scanned and free from vulnerabilities.
Seamlessly Share Any Application, Anywhere
Improve DevOps collaboration while maintaining clear boundaries. Create and push multi-service applications and images and make them accessible for deployment within your company.
Promote and Distribute Your Images to Where You Need Them
Automatically promote images from testing to production in a controlled way, ensuring that they meet the security minimums that you define, then mirror containerized content to distributed teams with policy-based controls.
Automate Your Development-to-Production Pipeline
Integrate Mirantis Secure Registry to your development pipeline with webhooks. Policy-based promotion automates compliance checks to secure your application supply chain.
Integrate with internal user directories to implement fine-grained access control policies in Mirantis Secure Registry. Multiple image repositories can be linked to provide a separation of duties from development through production.
Image scanning and security
Get unprecedented insight into the software & libraries your organization is using as well as your exposure to known security threats. With this optional feature of Mirantis Container Cloud, docker images are scanned at the binary level, then correlated with a regularly updated CVE vulnerability database.
Image signing and verification
Mirantis Secure Registry uses Notary’s implementation of the TUF spec (the same technology that’s behind Docker Content Trust) to digitally sign and verify both the contents and publisher of images. Developers and CI tools can apply signatures so downstream users and automation tools can verify image authenticity before running.
Caching and mirroring Docker image repositories
Distributed teams and production environments require images to be available in multiple sites. Container image repositories can be mirrored and cached, putting images right where they are needed for deployment and avoiding network bottlenecks.
Container images may be lightweight, but that does not mean you want to store every image your team or CI tool creates forever. Automatically clean up images based on policy controls such as the date of the last update or the number of recent images you want to keep.
Policy-based image promotion
Streamline your development and delivery pipeline and enforce security controls with promotion policies that automatically gate images, ensuring only approved content makes its way to production.