Aqua Security Extends Container Security Platform

Aqua Security today announced it has natively extended the reach of its container security platform to include serverless computing frameworks. Version 3.5 of Aqua Container Security Platform (CSP) adds a risk assessment for serverless functions that scans for known vulnerabilities, embedded secrets and cloud permissions. Rani Osnat, vice president of

Read more

Why Automation is the Crucial Ingredient in Microservices Security

Microservices security is different from securing other technologies—and much more difficult Microservices are nothing new. Neither is the conversation about best practices for securing microservices. Typically, that conversation centers on strategies such as making each microservice as small as possible to minimize your attack surface, preventing unnecessary interactions between microservices

Read more

DevOps Chat: Kubernetes Security with Aqua Security

It’s widely recognized that Kubernetes has become the de facto standard for container orchestration. Just look at all the technology companies that are supporting Kubernetes in one way or another. It’s pretty clear the decision has been made to embrace Kubernetes. Aqua Security has thrown its hat into the ring

Read more

Container Security: Alert Logic Extends Reach of IDS for Containers

As container security becomes a higher priority, more organizations are starting to pay attention to not just segmentation of services using, for example, firewalls, but also security fundamentals such as intrusion detection. To address that issue, Alert Logic has extended its network intrusion detection system (NIDS) to include support for

Read more

Aqua Security Partners with Pivotal on Container Security

IT organizations that have embraced Pivotal Cloud Foundry (PCF) now can download container security software from Aqua Security to scan containers running on the platform-as-a-service (PaaS) environment for vulnerabilities. Now generally available on the Pivotal Network, Aqua Security for PCF automatically scan application or container artifacts for known vulnerabilities based

Read more

Report: Container Security Gaps Should Be Priority

A report published by container security platform provider Twistlock suggests that the biggest issue with container security has more do with the code in the containers rather than the container itself. Based on “honeypots” and scans set up and run by Twistlock, the first cloud-native security report published by Twistlock

Read more

Building Security into the 3 Phases of Container Deployment

Container adoption has skyrocketed in recent years, and the importance of securing the applications DevOps teams create and deploy using containers has grown along with it. The protection security teams provide must be comprehensive across the entire container life cycle, and built into the DevOps pipeline in a way that’s

Read more

Threat Stack Makes Agent for Managing Security Available as a Container

Threat Stack has embraced containers as a mechanism for distributing the agent software it relies on to monitoring IT environment for security threats. Chris Ford, vice president of product for Threat Stack, says usage of containers to distribute agent software across multiple platform will not only advance DevSecOps processes, but

Read more

In-Q-Tel Invests in StackRox to Advance Container Security

StackRox, a provider of container security services, today announced an investment and technology development agreement with In-Q-Tel (IQT), an independent, not-for-profit strategic investor that identifies and accelerates development of technologies employed by U.S. government agencies. StackRox CEO Ali Golshan says that as government agencies increasingly embrace public clouds such as

Read more