Containerization continues to realize reputation with many massive enterprises, the place hundreds of recent containers may be deployed on daily basis. Containerization offers the advantages of cloud computing, like infinite expandability, but additionally particular person management over every unbiased container, which might act as something from tiny microservices to full-blown applications and working programs. But, regardless of these benefits, and the rising reliance on containers, safety has been gradual to catch up. Conventional safety applications and their one-size-fits-all strategy, even when created to work contained in the cloud, typically fare poorly making an attempt to guard hundreds of unbiased containers, which can all have totally different capabilities, parts and hidden vulnerabilities.
A part of the problem is the way in which containers are often created. Builders will pull pictures from numerous locations — together with beforehand created containers and open-source repositories — and use them because the baseline for his or her new containers. The issue is that these pictures would possibly harbor every thing from pointless working system parts to vulnerabilities. None of that may be an issue, relying on the place and the way the brand new container is being deployed, or it may be simply the opening that an enterprising attacker must compromise a whole community.
The Aqua Cloud Native Safety Platform secures particular person containers from the time they’re first developed all the way in which although after they land in a manufacturing atmosphere. It makes use of an inherent benefit of containers, the truth that they’re at all times extremely specialised for his or her jobs, to create a cybersecurity construction based mostly on whitelisting.
The platform is embedded into the event course of for containers, and might work with nearly any platform, together with Kubernetes, Rancher, Docker, Purple Hat Openshift, Mesosphere and others. Pricing for the platform is an annual subscription mannequin based mostly on the variety of nodes being protected, however there are additionally hourly pricing schemes out there for cloud deployments like Google Cloud and Amazon Internet Companies.