You can now use the Cloud Container Engine and Software Repository for Container service without configuration of the “insecure registry” for external access. The registry address uses a DNS name and doesn't require any docker client modification. The CCE service uses a valid certification for all Docker operations. The internal access remains unchanged at the moment.
Further information can be found in the CCE area of the Help Center.