Computer Security Resource Center

Computer Security Resource Center

Computer Security
Resource Center

SP 800-190 (DRAFT)

Application Container Security Guide

Date Published: April 2017
Comments Due: May 18, 2017 (public comment period is CLOSED)
Email Questions to:

Withdrawn: July 13, 2017


Murugiah Souppaya (NIST), John Morello (Twistlock), Karen Scarfone (Scarfone Cybersecurity)


NIST announces the public comment release of Draft Special Publication 800-190, Application Container Security Guide. Application container technologies, better known as containers, are a form of operating system virtualization combined with application software packaging. Draft SP 800-190 explains the security benefits and concerns associated with container technologies and makes practical recommendations for addressing the concerns when planning for, implementing, and maintaining containers.



application; application container; application software packaging; container; container security; isolation; operating system virtualization; virtualization
Control Families

Access Control; Configuration Management; System and Communications Protection; System and Information Integrity;


Draft SP 800-190

Supplemental Material:
Comment Template (xls)

Document History:
Draft SP 800-190 (4/10/17)
Draft SP 800-190 (7/13/17)
SP 800-190 (9/25/17)


Security and Privacy
threats; vulnerability management

cloud & virtualization; operating systems; software

Laws and Regulations
OMB Circular A-130