Rui Carmo
The big thing for me is capability whitelisting - it goes a long way toward helping secure containers. Although I’m swinging back to hypervisors where security and network configuration are paramount, Docker is looking better and better with each release.