Twistlock Gets Cool with Cloud Native
19.03 is the first comprehensive cloud native security platform, which
protects across hosts, containers and serverless in a single product,
cloud native and API-enabled, covering all workloads regardless of what
underlying compute technology powers them.
•Cloud Native Network Firewall and Radar for Hosts: Cloud Native Network Firewall for hosts is a distributed layer 3 / 4 firewall that stresses automated learning and workload awareness to provide micro-segmentation of apps in a least privilege connectivity mesh.
•Host File Integrity Monitoring: File integrity monitoring enables monitoring of host file systems for specific changes to directories and files, key requirement in many compliance standards.
•Host Forensics: Host forensics works in a very similar manner to container forensics, keeping a self-managed, high performance local log of forensic activity and selectively forwarding this data to Console in case of incidents.
•Custom Runtime Rule Language: Custom runtime rule language is a simple, intuitive, expression-based approach to define discrete runtime behaviors such as preventing local access to cloud provider metadata or running processes with specific parameters.
•Cloud Compliance v2: This version adds coverage for all cloud native services on Azure and Google Cloud Platform and adds checks for the CIS Benchmarks for AWS.
•Assigned Collections: Assigned Collections to makes it easier to provide least privilege access to data within a Twistlock environment, such as allowing a given dev team to only see vulnerability data about their own images.
•RASP Defender: Twistlock 19.03
adds runtime defense for services that run Docker images, yet do not use
Docker or OCI runtimes, like Pivotal PAS, as well as services that use a
Docker runtime but in a highly constrained environment, like AWS Fargate
or Microsoft Azure Container Instances. As infrastructure teams adopt
these technologies, Twistlock is providing robust security capabilities
for these types of deployments with RASP Defender.
•Direct download of twistcli, the Jenkins plugin, the Defender image and Daemon Set YAML directly from the Console web UI
•Upload debug data to our solution engineering team directly from the Console web UI
•Real time log ingestion, analytics, and alerting for all Kubernetes audit events
•Drag, drop and disablement of rules within policies
•Simplified vulnerability management policy
•Separate host and container policies for compliance and vulnerability management
•Enterprise proxy compatibility: integration with ingress and egress proxies that require authentication and/or perform TLS intercept
•IBM Security Advisor integration for alerting
•Updated support for Google Cloud Security Command Center