Signing and Verifying Images with Docker Content Trust

Let's see how Docker Content Trust makes it smooth to verify the integrity and the publisher of Docker images.

We'll cover the following

Docker Content Trust (DCT) makes it simple and easy to verify the integrity and the publisher of images that you download and run. This is especially important when pulling images over untrusted networks such as the internet.

Overview

At a high level, DCT allows developers to sign images when they are pushed to Docker Hub or other container registries. These images can then be verified when they are pulled and run. This high-level process is shown below.

Get hands-on with 1000+ tech skills courses.