Aporeto Announces Trireme Open-Source Security Project for Kubernetes and Docker
October 31, 2016

Aporeto announced Trireme, an open-source security project for cloud-native applications and initially targets Kubernetes and Docker by bringing security initiatives in line with the speed of cloud-native development on any cloud and at any scale.

The approach, which simplifies application segmentation for distributed applications, is based on a distributed architecture and is an alternate implementation of network policy that does not require any external controller or state, hence relieving the complexities of overlay topologies. The open approach allows the community to participate and build on this new foundation introduced by Aporeto.

"The traditional way of thinking makes the network the natural place to impose security for distributed applications. Mechanisms include distributed firewalls, distributed ACLs, and SDN. However, when you think about cloud-scale, none of these approaches make sense," said Dimitri Stiliadis, CEO of Aporeto. "Aporeto Trireme attaches security to the application by authentication and authorization in a network-agnostic way. We're ready now to engage with the open-source community and make cloud-native applications viable, manageable and useful for the first time."

Aporeto's Trireme approach is compatible with all networking techniques available in Kubernetes. Moreover, this approach also provides protection against man-in-the-middle or replay attacks that IP filter-based implementations cannot support. It is also extensible across federated Kubernetes clusters and works in the presence of network address translations (NAT) or tunneling mechanisms, such as SDN, without requiring any IP address and port configuration.

Share this

Industry News

June 29, 2022

Progress announced the latest release of Progress Flowmon.

June 29, 2022

CodeSee announced the launch of Open Source Hub (OSH).

June 29, 2022

Ambassador Labs announced the newest release of Ambassador Edge Stack, an integrated edge solution that empowers developer teams to quickly configure the edge services required to build, deliver, and scale applications for Kubernetes.

June 29, 2022

Ondat released into general availability version 2.8 of its Ondat platform for stateful workloads in Kubernetes.

June 28, 2022

Hewlett Packard Enterprise (HPE) unveiled platform enhancements and new cloud services for HPE GreenLake, the company’s flagship offering that enables organizations to modernize all their applications and data.

June 28, 2022

Sysdig announced Drift Control to prevent container attacks at runtime. Teams can detect, prevent, and speed incident response for containers that were modified in production, also known as container drift.

June 28, 2022

ShiftLeft announced an investment from and go-to-market partnership with Wipro Ventures.

June 27, 2022

Delinea announced the latest release of DevOps Secrets Vault.

June 27, 2022

Jit announced a $38.5 million seed funding round and launched a free beta version which automates product security.

June 27, 2022

Platform.sh raised $140 million in Series D funding.

June 23, 2022

Akana by Perforce now offers BlazeMeter to customers, previously a solution with Broadcom Layer7.

June 23, 2022

Coder announced the release of a new open source project that gives developers and data scientists a consistent, secure, yet flexible way to create cloud workspaces in minutes.

June 23, 2022

GitGuardian is announcing a series of new features to address developer experience in securing the software development lifecycle.

June 22, 2022

OctoML released a major platform expansion to accelerate the development of AI-powered applications by eliminating bottlenecks in machine learning deployment.

June 22, 2022

Snow Software announced new functionality and integrations for Snow Atlas, a purpose-built platform that provides a framework to accelerate data-driven technology decision-making.