StackRox Upgrades Kubernetes Security
October 7, 2019
has made several new product features to the StackRox Kubernetes
Security Platform that expand its capabilities across multiple container
and Kubernetes environments. The latest StackRox updates enable controls
for additional container operating systems and image registries, easier
deployment via cloud marketplaces, native integrations with SIEM and
incident management platforms, and support for the Istio service mesh.
"Given our multi-cloud deployments across AWS and Azure, we appreciate
the ability to deploy the StackRox platform easily in any and all of our
environments and integrate with our existing tools," said Tom Bartolucci,
vice president of engineering for YayPay, a FinTech pioneer in accounts
receivable management. "With StackRox, we can continue our fast pace of
software innovation while maintaining our stringent security and
compliance controls, since StackRox integrates into all the environments
we support and ties into the CI/CD and DevOps processes and tooling that
fuel our innovation."
The latest version of the StackRox Kubernetes Security Platform now
includes the following features and enhancements:
eBPF instrumentation – StackRox delivers the option to collect
system-level data at runtime using extended Berkeley Packet Filter (eBPF),
a native Linux in-kernel virtual machine for low-overhead data
Google Container-Optimized OS (GCOS) compatibility – With eBPF
instrumentation, StackRox enhances runtime security controls for
environments that use GCOS, the default operating system for Google
Kubernetes Engine (GKE).
Azure Container Registry
integration – StackRox includes a native integration for Microsoft Azure
customers to discover and scan images in Kubernetes environments on
Azure, including Azure Kubernetes Service (AKS).
GCP, and Red Hat OpenShift Marketplace availability – StackRox is
available on all major cloud marketplaces, simplifying deployment and
increasing flexibility for customers running on those providers. For GCP
customers, StackRox is available as a Kubernetes application to enable
deployment on GKE and Anthos.
Splunk, Sumo Logic, and
PagerDuty integrations – StackRox delivers native integrations for
leading security information and event management (SIEM) and incident
response solutions to easily send alerts and policy violation data
directly to those platforms, streamlining operations and remediation.
Istio coverage – StackRox
provides visibility into Istio services and their network traffic,
enabling organizations to apply policy controls on allowed connectivity
in Kubernetes environments running Istio.
"To effectively operationalize
security in cloud-native environments, organizations need security to be
integrated across their existing toolchains and workflows," said Wei
Lien Dang, co-founder and vice president of product at StackRox. "The
new features in our latest release enable our customers to gain broader
security coverage across their Kubernetes infrastructure and benefit
from aligning insights from StackRox with the security tools they use