Aqua News

Kube-bench is a Go application that tests the security of your Kubernetes deployment against an industry standard benchmark, the CIS Kubernetes Benchmark…sparing you countless hours of manual drudgery, Kube-bench creates an extensive set of automated checks from the 275-page guide to Kubernetes best practices and security recommendations.

Aqua Security expands its Aqua Link Partner Program to include Managed Service Providers delivering protection for cloud-native workloads BOSTON, MA – September 26, 2018 – Aqua Security, a leading platform provider for securing container-based and cloud-native applications, today announced Hitachi Vantara has integrated Aqua security capabilities into the Hitachi Enterprise Cloud (HEC) Container Platform. HEC …

Kube-hunter, the new open source tool for Kubernetes penetration tests; The very first KubeSec Enterprise summit, Protecting Kubernetes applications on Google Cloud; Kubernetes service mesh comparison; Securing Pivotal PKS and serverless security news

Shifting left does not address the fact that deploying containers and migrating to cloud-native environments also necessitates the security team to“shift up” to focus on its new priority: protecting the application tier.

“The attacks are generally not on the containers themselves, but on the applications running in them. The developer is installing all the software pieces in the container, and, because of that, the applications themselves are running with less hardening.” says Amir Jerbi, CTO at Aqua Security.

As you move more containers into production, you’ll discover that running containers on virtual machines requires only a minimal or “Thin OS”, which makes securing the operating system on the host level easier. You no longer need to leverage many of the other capabilities that enterprise-grade Linux provides, such as RHEL. Instead, you’ll use a …

Aqua Security has been actively participating in the open source community around Kubernetes security, including contributing significantly to the kube-bench project. We have followed that up with the release of the kube-hunter project, named for its ability to hunt for security weaknesses in Kubernetes clusters. Kube-hunter enables Kubernetes administrators, operators and security teams to identify weaknesses in their deployments and …

Amir Jerbi, CTO and co-founder at Aqua Security: “Containers are a way for developers to easily package and deliver applications, and for operations to easily run them anywhere in seconds, with no installation or setup necessary. They enable this by embedding all the code needed in the container and using a process called a container engine to run the …