Chris Riley ☁, profile picture
Uploaded byChris Riley ☁
1,015 views

Enterprise Docker Requires a Private Registry

The document discusses the necessity of a premium private Docker registry for running Docker in production environments, citing challenges associated with public registries such as governance, trust, and integration. It emphasizes the need for features like consistency, governance, high availability, and integration with the software supply chain. The presentation also outlines the capabilities of Nexus Repository Manager as a solution for hosting, proxying, and managing Docker images.

Embed presentation

RUNNING DOCKER IN PRODUCTION? A PREMIUM PRIVATE REGISTRY IS A MUST
FEATURED SPEAKERS CHRIS RILEY, DEVOPS ANALYST Coder turned DevOps Analyst at Fixate O’Reilly Author, Content Contributor Nexus Product Manager JEFFRY HESSE, PRODUCT OWNER @HoardingInfo @worduuuuuuuup @sonatype
3 Is Docker Ready for the Enterprise? @sonatype
4 Public Container Registries • Don’t build it yourself • Leverage the community • Open source – We love open source! @sonatype
5 Challenges with Public Registries • Lack of governance • Can’t trust the images • Performance and availability • Where to put your images? • Hard to integrate with software supply chain @sonatype
What’s Not New • Development is just manufacturing • And a Docker image is just another part in your software supply chain @sonatype
7 The Enterprise Needs a Private Registry/Repository @sonatype
8 Challenges with Paid Docker Registries & Docker / Distribution Git • No user interface • Isolated tool • Just a bucket • Not built for your supply chain @sonatype
9 A Strong Private Registry is a MUST Be Local and Shareable Allow Consistency Have Built in Governance Have High Availability Integrate with the Supply Chain @sonatype
SHARED User Interface Heterogeneous Organization Search and Metadata @sonatype
CONSISTENCY Which Version Are You Using? One System of Truth Faith Based Deployment @sonatype
Ensure Identical Environments 12 @sonatype
GOVERNANCE Role Based Image Access Able to Store Private Info Avoid Duplication @sonatype
PERFORMANCE Average 3 Min Pull Adds Up More Builds Period Why Pull Everything? @sonatype
INTEGRATION Directory Services Orchestration Release Automation Other Registries @sonatype
Source Repository Design Build Component Performance System Performance Manual Test Environment Deployment App Staging Environment Deployment App Production Environment Deployment App Local Dev. Environment @sonatype
DOES NEXUS CHECK THE BOX? @sonatype
18 Demo: What are we Going to Show? @sonatype • Nexus 3 Docker Private Registry Capabilities • Docker Push / Pull, Browse and Search • Proxy of Docker Hub • Nexus Groups • Nexus Security via Roles • Hosting binaries too
Docker: Hosted, Proxy, and Group Repositories 19 Hosted Your Docker Images 1 Hosted 3rd party Docker images Proxy External Docker registry 1 Hosted Your Docker Images 2 GROUP1 GROUP2 Proxy External Docker registry 2 GOOGLE CONTAINER REGISTRY DOCKER HUB NEXUS REPOSITORY MANAGER Development Operations External Developers First
TRY IT NOW bitly.com/nexusanddocker The Only Free Repository Solution with Docker Support @sonatype
RUNNING DOCKER IN PRODUCTION? A PREMIUM PRIVATE REPOSITORY IS A MUST

More Related Content

PPTX
Docker - A high level introduction to dockers and containers
byDr Ganesh Iyer
 
PDF
July OpenNTF Webinar - HCL Presents Keep, a new API for Domino
byHoward Greenberg
 
PDF
DockerCon EU 2015: Official Repos and Project Nautilus
byDocker, Inc.
 
PDF
August Webinar - Water Cooler Talks: A Look into a Developer's Workbench
byHoward Greenberg
 
PDF
OpNovember Water Cooler Talk: The Mystery of Domino on Docker - Part 1
byHoward Greenberg
 
PDF
Alibaba Cloud Conference 2016 - Docker Open Source
byJohn Willis
 
PPTX
Docker for the enterprise
byBert Poller
 
PDF
January OpenNTF Webinar: 4D - Domino Docker Deep Dive
byHoward Greenberg
 
Docker - A high level introduction to dockers and containers
byDr Ganesh Iyer
 
July OpenNTF Webinar - HCL Presents Keep, a new API for Domino
byHoward Greenberg
 
DockerCon EU 2015: Official Repos and Project Nautilus
byDocker, Inc.
 
August Webinar - Water Cooler Talks: A Look into a Developer's Workbench
byHoward Greenberg
 
OpNovember Water Cooler Talk: The Mystery of Domino on Docker - Part 1
byHoward Greenberg
 
Alibaba Cloud Conference 2016 - Docker Open Source
byJohn Willis
 
Docker for the enterprise
byBert Poller
 
January OpenNTF Webinar: 4D - Domino Docker Deep Dive
byHoward Greenberg
 

What's hot

PDF
Journey to the devops automation with docker kubernetes and openshift
byYusuf Hadiwinata Sutandar
 
PDF
Docker Birthday #3 Slides - Overview
byChris Ciborowski
 
PPTX
Top 10 dev ops tools (1)
byyalini97
 
PDF
Meetup Devops-Geneva-19.10.2019
byHidora
 
PDF
Managing Open Source software in the Docker era
bynexB Inc.
 
PPTX
Docker in a big company
byDocker, Inc.
 
PDF
Transforming Application Delivery with PaaS and Linux Containers
byGiovanni Galloro
 
PPTX
Bay Area Open Source Meet-Up: Things I Learned about Open Source The Hard Way
byMark Hinkle
 
PDF
Docker in pratice -chenyifei
bydotCloud
 
PDF
Introduction to containers running dockers using kubernetes - הרצאה לכנס מיק...
byZohar Stolar
 
PPTX
CloudOpen 2014 - Mixing Your Open Source Cloud Cocktail
byMark Hinkle
 
PDF
321 codeincontainer brewbox
byLino Telera
 
PDF
August OpenNTF Webinar - Git and GitHub Explained
byHoward Greenberg
 
PPTX
DevSecOps in a cloudnative world
byKarthik Gaekwad
 
PPTX
LASUG Online: Introduction to Docker and Docker Tools
byVasiliy Fomichev
 
PDF
Cloud Native Patterns with Bluemix Developer Console
byMatthew Perrins
 
PDF
PaaS Lessons: Cisco IT Deploys OpenShift to Meet Developer Demand
byCisco IT
 
PPTX
Interop 2017 - Managing Containers in Production
byBrian Gracely
 
PDF
OpenNTF Webinar, October 2020
byHoward Greenberg
 
PPTX
PASS 24HOP Linux Scripting Tips and Tricks
byKellyn Pot'Vin-Gorman
 
Journey to the devops automation with docker kubernetes and openshift
byYusuf Hadiwinata Sutandar
 
Docker Birthday #3 Slides - Overview
byChris Ciborowski
 
Top 10 dev ops tools (1)
byyalini97
 
Meetup Devops-Geneva-19.10.2019
byHidora
 
Managing Open Source software in the Docker era
bynexB Inc.
 
Docker in a big company
byDocker, Inc.
 
Transforming Application Delivery with PaaS and Linux Containers
byGiovanni Galloro
 
Bay Area Open Source Meet-Up: Things I Learned about Open Source The Hard Way
byMark Hinkle
 
Docker in pratice -chenyifei
bydotCloud
 
Introduction to containers running dockers using kubernetes - הרצאה לכנס מיק...
byZohar Stolar
 
CloudOpen 2014 - Mixing Your Open Source Cloud Cocktail
byMark Hinkle
 
321 codeincontainer brewbox
byLino Telera
 
August OpenNTF Webinar - Git and GitHub Explained
byHoward Greenberg
 
DevSecOps in a cloudnative world
byKarthik Gaekwad
 
LASUG Online: Introduction to Docker and Docker Tools
byVasiliy Fomichev
 
Cloud Native Patterns with Bluemix Developer Console
byMatthew Perrins
 
PaaS Lessons: Cisco IT Deploys OpenShift to Meet Developer Demand
byCisco IT
 
Interop 2017 - Managing Containers in Production
byBrian Gracely
 
OpenNTF Webinar, October 2020
byHoward Greenberg
 
PASS 24HOP Linux Scripting Tips and Tricks
byKellyn Pot'Vin-Gorman
 

Viewers also liked

PPTX
Transforming Organizations with CI/CD
byCprime
 
PDF
Deploying Docker Containers at Scale with Mesos and Marathon
byDiscover Pinterest
 
PPTX
DevOps is for Everyone - DevOps East
byChris Riley ☁
 
PPTX
Hero's Tookit: Start Your Rugged DevOps Journey with Nexus, Jenkins and Docker
bySeniorStoryteller
 
PDF
Continuous delivery with jenkins, docker and exoscale
byJulia Mateo
 
PDF
Locally it worked! virtualizing docker
bySascha Brinkmann
 
PPTX
Culture Hacker: How to Herd CATTs and Inspire Rebels to Change the World! - S...
bySeniorStoryteller
 
PDF
Docker Continuous Delivery Workshop
byJirayut Nimsaeng
 
PPTX
DevOps and Continuous Delivery reference architectures for Docker
bySonatype
 
PDF
Building and deploying a distributed application with Docker, Mesos and Marathon
byJulia Mateo
 
Transforming Organizations with CI/CD
byCprime
 
Deploying Docker Containers at Scale with Mesos and Marathon
byDiscover Pinterest
 
DevOps is for Everyone - DevOps East
byChris Riley ☁
 
Hero's Tookit: Start Your Rugged DevOps Journey with Nexus, Jenkins and Docker
bySeniorStoryteller
 
Continuous delivery with jenkins, docker and exoscale
byJulia Mateo
 
Locally it worked! virtualizing docker
bySascha Brinkmann
 
Culture Hacker: How to Herd CATTs and Inspire Rebels to Change the World! - S...
bySeniorStoryteller
 
Docker Continuous Delivery Workshop
byJirayut Nimsaeng
 
DevOps and Continuous Delivery reference architectures for Docker
bySonatype
 
Building and deploying a distributed application with Docker, Mesos and Marathon
byJulia Mateo
 

Similar to Enterprise Docker Requires a Private Registry

PDF
Docker in the Enterprise
bySaul Caganoff
 
PPTX
Docker Roadshow 2016
byDocker, Inc.
 
PDF
How Docker EE Helps Open Doors at Assa Abloy
byDocker, Inc.
 
PDF
How to Use Your Own Private Registry
byDocker, Inc.
 
PDF
Shipping NodeJS with Docker and CoreOS
byRoss Kukulinski
 
PPTX
Docker Federal Summit 2017 General Session
byDocker, Inc.
 
PDF
Docker Enterprise Deployment Planning
byStephane Woillez
 
PDF
Strategy, planning and governance for enterprise deployments of containers - ...
byThe Incredible Automation Day
 
PDF
Docker Overview - Rise of the Containers
byRyan Hodgin
 
PPTX
There's More to Docker than the Container: The Docker Platform - Kendrick Col...
by{code} by Dell EMC
 
PPTX
Docker Overview - AWS Tech Connect - Seattle 10/28
byMike Coleman
 
PPTX
Blue Whale in an Enterprise Pond
byDigia Plc
 
PDF
Docker Container-Introduction and Features
byAshnikbiz
 
PDF
How Docker EE is Finnish Railway’s Ticket to App Modernization
byDocker, Inc.
 
PPTX
Docker Meetup Paris: enterprise Docker
byArnaud MAZIN
 
PPTX
Scaling with Docker: New Relic’s Containerization Journey
byTori Wieldt
 
PDF
Docker off the grid
byMirantis IT Russia
 
PDF
Docker worshop @Twitter - How to use your own private registry
bydotCloud
 
PPTX
Implementing Docker in Production at Scale
byKarl Matthias
 
PDF
What is this "docker"
byJean-Marc Meessen
 
Docker in the Enterprise
bySaul Caganoff
 
Docker Roadshow 2016
byDocker, Inc.
 
How Docker EE Helps Open Doors at Assa Abloy
byDocker, Inc.
 
How to Use Your Own Private Registry
byDocker, Inc.
 
Shipping NodeJS with Docker and CoreOS
byRoss Kukulinski
 
Docker Federal Summit 2017 General Session
byDocker, Inc.
 
Docker Enterprise Deployment Planning
byStephane Woillez
 
Strategy, planning and governance for enterprise deployments of containers - ...
byThe Incredible Automation Day
 
Docker Overview - Rise of the Containers
byRyan Hodgin
 
There's More to Docker than the Container: The Docker Platform - Kendrick Col...
by{code} by Dell EMC
 
Docker Overview - AWS Tech Connect - Seattle 10/28
byMike Coleman
 
Blue Whale in an Enterprise Pond
byDigia Plc
 
Docker Container-Introduction and Features
byAshnikbiz
 
How Docker EE is Finnish Railway’s Ticket to App Modernization
byDocker, Inc.
 
Docker Meetup Paris: enterprise Docker
byArnaud MAZIN
 
Scaling with Docker: New Relic’s Containerization Journey
byTori Wieldt
 
Docker off the grid
byMirantis IT Russia
 
Docker worshop @Twitter - How to use your own private registry
bydotCloud
 
Implementing Docker in Production at Scale
byKarl Matthias
 
What is this "docker"
byJean-Marc Meessen
 

More from Chris Riley ☁

PPTX
Pingar App for SharePoint
byChris Riley ☁
 
PPTX
Pingar - The Future of Text Analytics
byChris Riley ☁
 
PPTX
Robot & Frank & Basic AI
byChris Riley ☁
 
PPTX
Dev/Test in the Cloud - A Business Case
byChris Riley ☁
 
PPTX
SharePoint Meet ECM - SPSLA 2012
byChris Riley ☁
 
PPTX
SharePoint Meet ECM - SPS Houston
byChris Riley ☁
 
PPTX
Enterprise DevOps fact or fiction - DevOps Summit 2014
byChris Riley ☁
 
PPTX
What DevOps means for QA Teams
byChris Riley ☁
 
PPTX
SharePoint Meet ECM at #SPSSC
byChris Riley ☁
 
PPTX
Continuous Integration (CI) is about more than releases
byChris Riley ☁
 
PPTX
Infragistics uses DevOps to increase customer engagment
byChris Riley ☁
 
PPTX
Navigating the Developer Tools Market: DevOps Camp Houston 2014
byChris Riley ☁
 
PPT
Move your SharePoint Development to the Cloud
byChris Riley ☁
 
PPTX
CloudShare TeamLabs Walkthrough
byChris Riley ☁
 
PPT
Cloud - AIIM Conference 2012
byChris Riley ☁
 
PPTX
SharePoint, Cloud, Records Managment
byChris Riley ☁
 
PPTX
SPS Toronoto - SharePoint meet ECM
byChris Riley ☁
 
PPTX
The Bootstrappers Guide to the Startup Stack
byChris Riley ☁
 
PPT
SharePoint meet ECM @ Live 360 2013
byChris Riley ☁
 
PPTX
CloudShare SP Expert Hackathon
byChris Riley ☁
 
Pingar App for SharePoint
byChris Riley ☁
 
Pingar - The Future of Text Analytics
byChris Riley ☁
 
Robot & Frank & Basic AI
byChris Riley ☁
 
Dev/Test in the Cloud - A Business Case
byChris Riley ☁
 
SharePoint Meet ECM - SPSLA 2012
byChris Riley ☁
 
SharePoint Meet ECM - SPS Houston
byChris Riley ☁
 
Enterprise DevOps fact or fiction - DevOps Summit 2014
byChris Riley ☁
 
What DevOps means for QA Teams
byChris Riley ☁
 
SharePoint Meet ECM at #SPSSC
byChris Riley ☁
 
Continuous Integration (CI) is about more than releases
byChris Riley ☁
 
Infragistics uses DevOps to increase customer engagment
byChris Riley ☁
 
Navigating the Developer Tools Market: DevOps Camp Houston 2014
byChris Riley ☁
 
Move your SharePoint Development to the Cloud
byChris Riley ☁
 
CloudShare TeamLabs Walkthrough
byChris Riley ☁
 
Cloud - AIIM Conference 2012
byChris Riley ☁
 
SharePoint, Cloud, Records Managment
byChris Riley ☁
 
SPS Toronoto - SharePoint meet ECM
byChris Riley ☁
 
The Bootstrappers Guide to the Startup Stack
byChris Riley ☁
 
SharePoint meet ECM @ Live 360 2013
byChris Riley ☁
 
CloudShare SP Expert Hackathon
byChris Riley ☁
 

Recently uploaded

PDF
Igniting the Future: Copilot trends, agentic transformation and product roadm...
byUni Systems S.M.S.A.
 
PDF
Agentic Automation for Testers – A Hands-On Deep Dive
byUiPathCommunity
 
PDF
Session 1 - Solving Semi-Structured Documents with Document Understanding
byDianaGray10
 
PPTX
The Landscape of Computer Software Development Companies
byYash Singh
 
PDF
Unlocking the Power of Salesforce Architecture: Frameworks for Effective Solu...
byvarsha30tiwari
 
PDF
ElyriaSoftware — Powering the Future with Blockchain Innovation
byElyria Software
 
PPTX
Basics of Identity Access Management In mordern Infrastructure
byPrinceXavier18
 
PDF
Generative AI in 2026: Hype, Bubble, Winter or The Real Deal?
byDr. Tathagat Varma
 
PDF
TrustArc Webinar - Assessing AI Risk with Confidence
byTrustArc
 
PDF
Making Sense of Raster: From Bit Depth to Better Workflows
bySafe Software
 
PDF
API206-S: Transforming Supply Chains with Amazon Bedrock AgentCore - AWS re:I...
byChris Bingham
 
PDF
Security Technologys: Access Control, Firewall, VPN
byShielaLasala
 
PDF
Decoding the DNA: The Digital Networks Act, the Open Internet, and IP interco...
byCSUC - Consorci de Serveis Universitaris de Catalunya
 
PDF
Safeguarding AI-Based Financial Infrastructure
byYasir Naveed Riaz
 
PDF
Innovative AI Solutions for Business Growth.pdf
byVox Works
 
PDF
eResource Scheduler Enterprise Resource Management and Scheduling Software.pdf
byeResource Scheduler
 
PDF
Zero Trust & Defense-in-Depth: The Future of Critical Infrastructure Security
byYasir Naveed Riaz
 
PDF
TPPmark2025 Kenta Inoue's answer 12/04/2025
byKenta Inoue
 
PDF
Recursive Self Improvement vs Continuous Learning
byBob Marcus
 
PDF
8 LLM Surveys https://tinyurl.com/bdz8e6fp
byBob Marcus
 
Igniting the Future: Copilot trends, agentic transformation and product roadm...
byUni Systems S.M.S.A.
 
Agentic Automation for Testers – A Hands-On Deep Dive
byUiPathCommunity
 
Session 1 - Solving Semi-Structured Documents with Document Understanding
byDianaGray10
 
The Landscape of Computer Software Development Companies
byYash Singh
 
Unlocking the Power of Salesforce Architecture: Frameworks for Effective Solu...
byvarsha30tiwari
 
ElyriaSoftware — Powering the Future with Blockchain Innovation
byElyria Software
 
Basics of Identity Access Management In mordern Infrastructure
byPrinceXavier18
 
Generative AI in 2026: Hype, Bubble, Winter or The Real Deal?
byDr. Tathagat Varma
 
TrustArc Webinar - Assessing AI Risk with Confidence
byTrustArc
 
Making Sense of Raster: From Bit Depth to Better Workflows
bySafe Software
 
API206-S: Transforming Supply Chains with Amazon Bedrock AgentCore - AWS re:I...
byChris Bingham
 
Security Technologys: Access Control, Firewall, VPN
byShielaLasala
 
Decoding the DNA: The Digital Networks Act, the Open Internet, and IP interco...
byCSUC - Consorci de Serveis Universitaris de Catalunya
 
Safeguarding AI-Based Financial Infrastructure
byYasir Naveed Riaz
 
Innovative AI Solutions for Business Growth.pdf
byVox Works
 
eResource Scheduler Enterprise Resource Management and Scheduling Software.pdf
byeResource Scheduler
 
Zero Trust & Defense-in-Depth: The Future of Critical Infrastructure Security
byYasir Naveed Riaz
 
TPPmark2025 Kenta Inoue's answer 12/04/2025
byKenta Inoue
 
Recursive Self Improvement vs Continuous Learning
byBob Marcus
 
8 LLM Surveys https://tinyurl.com/bdz8e6fp
byBob Marcus
 

Enterprise Docker Requires a Private Registry

Editor's Notes

  • #17 This ability to package and distribute containers from your development laptop, onto my laptop, or onto different test, staging or production environments, on-premises and in the cloud, and have them run identically is Docker's functional breakthrough. This eliminates, or makes it easier to diagnose, potential environment conflicts that are a major source of friction between development and operations in a software delivery organization. However, operating Dockerized applications in their own production environment will challenge many enterprises because it requires additional and more sophisticated system management, security and administration expertise than existing (VM and bare-metal) approaches. Governance Challenges: Stating that Docker is an enabler (and possibly even a forcing function) for adopting DevOps practices is easier said than done. An important question of trust arises between Dev teams and production operations. Questions that define the traditional working relationship between Dev and Ops are always asked, such as: Do I trust your software package has no bugs? Do I trust you have used secure coding practices? Can I trust you have profiled this application so that it uses resources efficiently? Can I trust your choice of base container image? How do you know that image is what it claims to be? Can I trust that you have not baked secrets, such as production passwords or private SSH keys, into layers of this container you want me to run? Conversely, the developer creating the container is also taking on responsibility for keeping the containers updated with OS, language runtime and middleware patches (consider the action required for updating images for the Heartbleed or Ghost vulnerabilities). In the most extreme case, Docker's ease of use (democratization) for containers enables developers to circumvent traditional production governance. Trusting Docker images: Gartner discovered 840 Redis images on Docker Hub. Which one should you choose? Searching for MySQL images returns 23 pages of results. How can you know the provenance of those images beyond the bare information you get in the Docker Hub user profile? This is the function of the "Official" tag on a Docker repository in Docker Hub. What does Official really mean? This is an image that Docker Inc. has verified comes from the "owner" of a particular software package, or OS distro. The "Official" Redis Docker images come from the upstream maintainers. Two possible mitigations for this issue exist. One is never accepting an untrusted third- party binary Docker image and always building from a Dockerfile, Chef recipe or Ansible playbook. The other is ensuring you use images from Official repositories that are optimized for particular software. Issues around identity, authorization, trust and image provenance are on Docker's road map, based on public key cryptography, as described at DockerCon Europe in December 2014. This ability to package and distribute containers from your development laptop, onto my laptop, or onto different test, staging or production environments, on-premises and in the cloud, and have them run identically is Docker's functional breakthrough. This eliminates, or makes it easier to diagnose, potential environment conflicts that are a major source of friction between development and operations in a software delivery organization. However, operating Dockerized applications in their own production environment will challenge many enterprises because it requires additional and more sophisticated system management, security and administration expertise than existing (VM and bare-metal) approaches. Governance Challenges: Stating that Docker is an enabler (and possibly even a forcing function) for adopting DevOps practices is easier said than done. An important question of trust arises between Dev teams and production operations. Questions that define the traditional working relationship between Dev and Ops are always asked, such as: Do I trust your software package has no bugs? Do I trust you have used secure coding practices? Can I trust you have profiled this application so that it uses resources efficiently? Can I trust your choice of base container image? How do you know that image is what it claims to be? Can I trust that you have not baked secrets, such as production passwords or private SSH keys, into layers of this container you want me to run? Conversely, the developer creating the container is also taking on responsibility for keeping the containers updated with OS, language runtime and middleware patches (consider the action required for updating images for the Heartbleed or Ghost vulnerabilities). In the most extreme case, Docker's ease of use (democratization) for containers enables developers to circumvent traditional production governance. Trusting Docker images: Gartner discovered 840 Redis images on Docker Hub. Which one should you choose? Searching for MySQL images returns 23 pages of results. How can you know the provenance of those images beyond the bare information you get in the Docker Hub user profile? This is the function of the "Official" tag on a Docker repository in Docker Hub. What does Official really mean? This is an image that Docker Inc. has verified comes from the "owner" of a particular software package, or OS distro. The "Official" Redis Docker images come from the upstream maintainers. Two possible mitigations for this issue exist. One is never accepting an untrusted third- party binary Docker image and always building from a Dockerfile, Chef recipe or Ansible playbook. The other is ensuring you use images from Official repositories that are optimized for particular software. Issues around identity, authorization, trust and image provenance are on Docker's road map, based on public key cryptography, as described at DockerCon Europe in December 2014.