OWASP Docker Top 10



{| style="padding: 0;margin:0;margin-top:10px;text-align:left;" |-
 * valign="top" style="border-right: 1px dotted gray;padding-right:25px;" |

About Docker Top 10
The OWASP Docker Top 10 project is giving you ten bullet points to plan and implement a secure docker container environment. Those 10 points are ordered by relevance. They don't represent risks as each single point in the OWASP Top 10, they represent security controls. The controls range from baseline security to more advanced controls, depended on your security requirements.

You should use it as a
 * guidance in the design phase as a system specification or
 * for auditing a docker environment,
 * also for procurement it could provide a basis for specifying requirements in contracts.

Licensing
To be decided

Roadmap
As of September 2018, the highest priorities for the next 3 months are:
 * Publish and work on a first draft of the documentation
 * Complete this first draft
 * Get other people involved to review the documentation and provide feedback
 * Incorporate feedback into the documentation
 * First Release

Subsequent Releases will add
 * Go from Draft to Release
 * Being promoted from an Incubator Project to a Lab Project

Getting Involved
For all communication, releases and more please use Github


 * valign="top" style="padding-left:25px;width:200px;border-right: 1px dotted gray;padding-right:25px;" |

Project Resources
Github


 * Actions take place @ Github

Slides


 * Dirk Wetter: Slides from Belgium Chapter Meeting, (improved version from OWASP AppSec Europe 2018)


 * Jack Mannino and Abdullah Munawar: Slides of Presentation at OWASP AppSec Europe 2018

Project Leader
Dirk Wetter

Related Projects
<!--
 * OWASP_Code_Project_Template
 * OWASP_Tool_Project_Template

--?

Classifications

 * }