Docker Hardened Images

Secure your Images - Introducing Docker DHI

In today’s fast-moving software landscape, security and compliance can’t be an afterthought. Docker Hardened Images (DHI) offer a powerful solution for organisations looking to standardise, secure, and streamline their container environments—without slowing down development.

Whether you're managing multiple teams, navigating complex compliance requirements, or simply tired of manually patching base images, DHI helps you stay ahead of vulnerabilities and reduce operational overhead.

Why Teams Choose Docker hardened Images

Docker Hardened Images adapt into your workflow – no retooling, no surprises. Built on familiar distros like Alpine and Debian and following a distroless approach, they strip away unneeded components to reduce risk. Unlike other minimal images, DHIs balance security with flexibility, letting you customise with certs, packages, and configs – all on a hardened, verifiable foundation.

Standardization Across Teams

Avoid fragmentation and outdated sources. DHI provides consistent, compliant images that reduce risk and simplify collaboration.

Automated Security & Maintenance

Say goodbye to manual patching. DHI helps you stay ahead of CVEs and zero-day vulnerabilities with automated updates and signed SBOMs.

Faster, Safer Releases

Eliminate last-minute rebuilds and security blockers in CI/CD. DHI images pass policy checks out-of-the-box, keeping your pipelines flowing.

Audit-Ready by Default

Built-in SBOMs, provenance, and VEX data make compliance smoother and faster—no scrambling during audits.

Seamless Tooling Integration

Works with Docker Scout, Snyk, Wiz, and other major scanners. Reduce alert fatigue and streamline remediation.

Boost Developer Productivity

Developers can move faster without waiting on security reviews. DHI embeds security into the base image, enabling speed without compromise.

Containers You Can Actually Trust...

Docker Hardened Images are ultra-minimal, production-ready container images built from source for maximum security. Maintained by Docker and backed by an enterprise SLA, they offer faster patching, near-zero CVEs, and up to 95% less attack surface. With built-in SBOMs, SLSA compliance, and digital signatures, every image is fully verifiable and trusted. Updates are continuous and automated—no manual effort needed.

Watch DHI Intro Video

Introducing Docker Hardened Images — a new catalog of security-hardened, enterprise-grade container images built to meet modern software supply chain demands.

See how DHI works and why it matters for modern DevSecOps teams.

WATCH INTRO VIDEO

Key Features of Hardened Images

CVE-patched regularly

Signed with Docker Content Trust or equivalent

Includes SBOM for software composition

Compatible with enterprise CI/CD tools

Backed by long-term support (LTS)

Frequently Asked Questions...

What are Docker Hardened Images?

Docker Hardened Images are secure, CVE-patched, signed container base images maintained by Docker. They include SBOMs and are ideal for regulated, air-gapped, and production-grade workloads.

What base images are available as Docker Hardened Images?

Currently supported distros include Ubuntu, Debian, Alpine, and Red Hat UBI. These are maintained and versioned with Docker's changelog and support SLAs.

What makes DHI different from public Docker Hub images?

DHI are curated, regularly patched, signed with Docker Content Trust, and include SBOMs. Public images are community-maintained and may lack patching or provenance.

Where can customers access DHI?

DHI are available through Docker Hub (with appropriate licensing), cloud marketplaces, or private registries as part of Docker’s commercial offerings.

What use cases are best suited for DHI?

DHI is ideal for CI/CD pipelines, regulated industries (finance, healthcare, gov), air-gapped environments, and zero-trust architectures.

Can partners resell or co-sell DHI?

Yes. Partners can attach DHI to managed services, consulting packages, or compliance-led modernization projects. Docker offers SKUs and marketplace availability for resale.

What’s included with each DHI?

Each image includes:
- Signed image manifest
- CVE patch history
- Software Bill of Materials (SBOM)
- Docker-maintained base with versioning

Can DHI be used in air-gapped environments?

Yes. Partners and customers can mirror images from Docker Hub or private registry into air-gapped environments for offline usage.

How do partners qualify for DHI sales and support?

Partners must complete the DHI Fast Start program and register opportunities through the partner portal. Certification or Fast Start badge is encouraged.

What support does Docker provide to partners?

Docker provides GTM kits, technical documentation, sales pitch decks, objection handling guides, PoC tools, and SE support for qualified opportunities.

Why It Matters to Your Customers

If your customer is using free container images from Docker Hub or unknown sources, they’re vulnerable. Docker Hardened Images are signed, CVE-patched, and come with SBOMs out of the box—ready for production, audits, and secure pipelines.

Here's why Docker Hardened Images are the solution...

Reduces CVE exposure and image sprawl

Ensures secure, compliant CI/CD pipelines

Eliminates risk from unverified community images

Speeds up audits with built-in SBOMs and signing

Protects air-gapped and regulated workloads

Customer Use Cases

Financial institutions needing compliance (SOC2, ISO 27001, FedRAMP)

Healthcare platforms dealing with HIPAA

Federal agencies requiring air-gapped security

DevSecOps teams enforcing trusted pipelines

Platform teams standardizing secure containers

Premium Support for Docker

What it covers and how it helps your development teams

Docker Premium Support has you covered with fast, effective response to keep your developers unblocked, your global app development workflows moving, and your software supply chain secure.

Available only to Docker Business and DHI customers, the Premium Support and TAM service gives your development teams access to Docker advisors, faster response times, and strategic guidance to maximize your Docker investment and achieve your business goals.

Download Premium Support Document

Discover what it covers and how it helps your development teams.

Download the full document now to empower your teams with the tools and strategies they need to succeed.

DOWNLOAD PREMIUM SUPPORT

Module_STORY_Docker-Prem-Support_graphic

Get in touch...

Our global team of experts is readily available to provide you with comprehensive support and guidance. Whether you require technical assistance, strategic insight, or further information, we are committed to delivering prompt and professional service. Please do not hesitate to reach out—we are here to assist you every step of the way.

Reinventing how the world accesses and uses cloud native technologies