Capsule8 Building Container-Aware Security Platform for Linux

Security startup Capsule8 emerged from its stealth mode in February with a plan to help provide a new model for application container security. In a video interview with eWEEK, Capsule8 CTO Dino Dai Zovi and CEO John Viega explain what's missing from container security today and what they are building to help fill the gap.

"Capsule8 is container-aware, real-time threat protection for Linux-based production environments," Dai Zovi said. 

Dai Zovi explained that the company name Capsule8 is a pun on what it does—which is encapsulates security knowledge in software, providing a secure approach to application delivery and deployment.

Containers already provide a number of built-in security characteristics, including isolation. Dai Zovi said that existing container security technologies have focused on preventing breakouts from container isolation. In contrast, Capsule8 focuses on preventing intrusions in containers themselves.

Viega added that many of the enterprises that Capsule8 has been talking to have said they can patch quickly for potential risks, though they have little visibility into whether or not they have already been exploited.

The Capsule8 technology will support both container and non-container environments.  In container environments, Dai Zovi said Capsule8 will be deployed as a privileged container that can instrument the host system to gather telemetry that is used to perform security analysis.

Capsule8's technology is not yet generally available, though Dai Zovi said the initial release will provide visibility, protection and forensics for container environments.

Watch the full video with Capsule8 CTO Dino Dai Zovi and CEO John Viega above.