In-Q-Tel Invests in StackRox to Advance Container Security

StackRox, a provider of container security services, today announced an investment and technology development agreement with In-Q-Tel (IQT), an independent, not-for-profit strategic investor that identifies and accelerates development of technologies employed by U.S. government agencies. StackRox CEO Ali Golshan says that as government agencies increasingly embrace public clouds such as

Read more

Aqua Security Open Sources Container Pen Test

Aqua Security is trying to level the container security playing field by making available an open source edition of a penetration testing tool designed specifically for container clusters. Rani Osnat, vice president of product marketing for Aqua Security, says kube-hunter is an automated penetration testing tool that developers and cybersecurity

Read more

3 Container Security Advantages and 3 Security Challenges

Do containers make software security easier or more difficult to achieve? That depends on your perspective. In some respects, container security is inherently more difficult than virtual machines, and in others it is fundamentally easier. Let’s consider three ways in which container security is challenging, and three other factors that

Read more

Tripwire Unfurls Container Vulnerability Scanning Service

Tripwire has made generally available a Tripwire for DevOps software-as-a-service (SaaS) offering optimized for containers. Tim Erlin, vice president of product management and strategy for Tripwire, says the SaaS application is intended to complement existing application and source code analysis tools by making it easier to scan container images and

Read more

When Good Images Go Bad: Ensuring Container Security

With container deployments becoming increasingly strategic for enterprise success, existing software development and security methodologies will need to better support not only developing but also running and managing applications made possible by containerization. When developers create a container image for their application, they start by choosing what’s known as a

Read more

Anchore Adds Enterprise Edition of Container Security Platform

Anchore this week released an enterprise edition of its open source container security platform featuring a graphical user interface (GUI) to make it easier for cybersecurity teams to navigate and explore container security events. Anchore CEO Saïd Ziouani says version 1.1 of Anchore Enterprise builds on Anchore Engine, which developers

Read more

Twistlock Adds Forensics to Container Security Platform

Twistlock today announced it is adding a forensics capability to its container security platform to provide cybersecurity teams with more visibility into events that occurred prior to a cybersecurity issue being discovered. Version 2.5 of the Twistlock container platform marks the first time organizations can collect forensic data using a

Read more

Making Containers More Secure

With container deployments becoming increasingly strategic for enterprise success, existing software development and security methodologies will need to better support not just developing but also running and managing applications made possible by containerization. When developers create a container image for their application, they start by choosing what’s known as a

Read more