StackRox Announces New Capabilities in Its Kubernetes Security Platform to Increase Protection of Kubernetes Applications

New deployment and runtime controls enhance the ability of DevOps and security teams to protect their container and Kubernetes environments

News provided by

StackRox

Aug 29, 2019, 08:00 ET

MOUNTAIN VIEW, Calif., Aug. 29, 2019 /PRNewswire/ -- StackRox, the leader in security for containers and Kubernetes, announced the general availability of version 2.5 of the StackRox Kubernetes Security Platform. The new version includes enhanced deployment and runtime controls that enable organizations to seamlessly enforce security controls to improve use cases including vulnerability management, network segmentation, configuration management, and threat detection.

These security controls further strengthen StackRox's position as the only Kubernetes-native container security platform that leverages inherent Kubernetes capabilities for policy enforcement. With StackRox, organizations can increasingly adopt a "security as code" model and ensure that security is built in to the infrastructure versus bolted on.

"A big advantage of working with StackRox has been the company's ability to iterate fast and deliver new security capabilities frequently and consistently," said Pratyus Patnaik, co-founder and CTO of Spoke. "The StackRox approach of leveraging controls native to Kubernetes lets us build security directly into the infrastructures we're already running instead of deploying separate controls that could compromise performance or uptime on our SaaS platform. We value the new techniques for hardening our environment delivered in this latest release, helping us prevent the creation or deployment of misconfigured assets."

The enhanced security controls available in version 2.5 of the StackRox Kubernetes Security Platform include:

  • Kubernetes Network Policy Generator — StackRox automatically baselines network activity, identifies allowed but unnecessary network connectivity, and updates Kubernetes network policies to achieve more secure network configurations.
  • Automated Process Whitelisting — StackRox leverages machine learning to baseline process activity within containers, automatically identify anomalous processes that operators can selectively whitelist, and can take specified action to prevent threats at runtime.
  • Dynamic Admission Control — StackRox can be optimized to provide a Kubernetes admission controller so organizations can prevent the deployment of containers based on pre-configured or custom policies set within StackRox.
  • Kubernetes RBAC Assessment — StackRox analyzes Kubernetes Role-Based Access Control (RBAC) settings to understand user and service account privileges and applies this context to determine misconfigurations, identify best practice violations, inform risk assessment, and check compliance with industry standards and custom policies.
  • Scoped Access Control — StackRox enhancements to role-based access control (RBAC) features allow organizations to manage and limit user access based on Kubernetes boundaries such as clusters and namespaces.
  • Improved Offline Deployment — StackRox now includes additional features for customers running in air-gapped networks with no Internet connectivity, including custom security notices, offline vulnerability definition updates, and a streamlined deployment experience.

"Kubernetes provides the ideal foundation for us to provide robust, portable, and consistent security across on-premise, cloud, and hybrid infrastructure environments without creating additional operational risk," said Wei Lien Dang, co-founder and vice president of product at StackRox. "We're able to support our customers' needs for new security controls that are aligned with DevOps workflows and toolchains and are easy to implement at scale."

These new security capabilities are available in the current release of the StackRox Kubernetes Security Platform.

Related resources:
11 tips to operationalizing Kubernetes Admission Controllers 
Kubernetes security 101
Guide to Kubernetes network policies

About StackRox
StackRox helps enterprises secure their containers and Kubernetes environments at scale. StackRox delivers the industry's first and only Kubernetes-native container security platform that enables security and DevOps teams to operationalize security and compliance policies across the entire container life cycle, from build to deploy to runtime. StackRox customers span cloud-native companies, Global 2000 enterprises, and government agencies. StackRox is privately held, with headquarters in Mountain View, CA. To learn more, visit www.stackrox.com and follow us on Facebook, LinkedIn and Twitter.

Press Contact
Dex Polizzi
Lumina Communications
646-741-8358
[email protected]

SOURCE StackRox

Related Links

http://www.stackrox.com

WANT YOUR COMPANY'S NEWS FEATURED ON PRNEWSWIRE.COM?

icon3
440k+
Newsrooms &
Influencers
icon1
9k+
Digital Media
Outlets
icon2
270k+
Journalists
Opted In
GET STARTED