Aqua enables security teams to manage and enforce security policies across a blend of VM-based containers, Containers-as-a-Service (CaaS) and Function-as-a-Service (FaaS) spanning both multi-cloud and on-premises environments.
Aqua’s comprehensive serverless security solution now includes a full chain of controls to discover functions across multiple cloud accounts, scan them for vulnerabilities, detect excessive permissions and configuration issues, and provide function assurance – preventing the execution of untrusted or high-risk functions based on defined policies.
“The new technologies supporting cloud native applications require a holistic approach to security and compliance, across the application lifecycle as well as up and down the stack, and this has become more evident in recent months with significant vulnerabilities discovered in Kubernetes and runc for example,” notes Amir Jerbi, CTO and co-founder at Aqua Security. …
Aqua Security: This tool is ideal to manage end-to-end DevSecOps pipeline security. It has very tight runtime security processes and controls in place. It offers full control over the containerized environment and prevents any intrusion or vulnerability across the pipeline.
The progress of DevOps continues, but what about the security risk it brings? Dror Davidoff, CEO and co-founder at Aqua Security shares his thoughts on mitigating the new security risks of containers.
Jerbi was speaking ahead of the release of Aqua 4.0, which introduces tighter controls for Linux hosts running containers which should address vulnerabilities like runc. The new version also includes targets serverless, with functions discovery and deep scanning of functions packages and dependencies for known vulnerabilities. The updated platform will also offer permissions assessment for serverless …
Aqua 4.0 release also tightens Linux host protection and compliance on the heels of recent vulnerability disclosures Boston, MA – 4 March 2019 – Aqua Security, the leading platform provider for securing container-based and cloud native applications, announced today the availability of version 4.0 of the Aqua cloud native security platform, introducing new security and …
The challenge of explaining serverless to people isn’t technical but literal: The term is a misnomer. “Serverless is a rather bad name for a cohort of technologies that enable executing application code without managing or caring about the underlying infrastructure, and doing so on demand and in a highly automated way,” says Amir Jerbi, CTO at Aqua Security.