X
  • September 9, 2019

Extending Aqua Security to Oracle Container Engine for Kubernetes

Gilson Melo
Senior Principal Product Manager

As part of our continuing commitment to open standards and supporting a broad and varied ecosystem, we are pleased to announce that Aqua Security has extended its Container Security Platform to Oracle Cloud Infrastructure. You can now deploy the Aqua runtime security solution on Container Engine for Kubernetes.

What Does This Mean?

Although Container Engine for Kubernetes and Oracle Cloud Infrastructure are built with rich security functionality, some customers choose to deploy purpose-built container security solutions. There are a lot of new considerations in containerized environments, including:

  • Container “breakout”
  • Outdated or vulnerable images
  • Kubernetes administrative interface exploits
  • Resource hogging

No one tool can solve for all possible threat vectors without proper processes in place, but many can certainly help. We want to make it easy for our customers to deploy any solution that adds value to their experience.

Aqua Security

Aqua has built a cloud native security platform that leverages the properties of microservices, containers, and serverless functions to make Kubernetes-based applications more secure than ever. By providing full-lifecycle security controls at a granular level, Aqua combines preventive and reactive controls to protect applications in runtime, detect and block attacks, and provide visibility and auditing for compliance.

The Aqua platform integrates with the CI/CD pipeline to ensure that only trusted images with an acceptable level of risk and vulnerabilities are deployed. It provides flexible runtime policies that leverage machine learning to allow only legitimate activities. As a result, it prevents suspicious container and function processes, file access, network connections, and privilege escalation.

On Container Engine, Aqua leverages native Kubernetes security controls to prevent untrusted images from running on a cluster, and to prevent the exploitation of vulnerable container code. It provides real-time visualization and actionable insights into the security posture of a Container Engine cluster.

Aqua empowers enterprises to perform the following tasks:

  • “Shift-left” security, which lets DevOps speed up application delivery with full automation and no compromise on security
  • Protect workloads in runtime against known vulnerabilities, zero-day exploits, malware, and insider threats
  • Limit the impact of breaches with a container-level firewall
  • Meet regulatory compliance requirements such as PCI-DSS and HIPAA, and best practices from the Center for Internet Security (CIS) and the National Institute of Standards and Technology (NIST)

Conclusion

If you want to experience Aqua on Container Engine for yourself, sign up for an Oracle Cloud Infrastructure trial account. You can also request an Aqua demo.

Be the first to comment

Comments ( 0 )
Please enter your name.Please provide a valid email address.Please enter a comment.CAPTCHA challenge response provided was incorrect. Please try again.