Aporeto Announces Zero Trust Cloud Security Solution
August 07, 2019

Aporeto announced its cloud network security solution for seamless distributed policy management across Kubernetes multi-cluster and container environments, using a unique application identity-based approach to security instead of relying on IP addresses.

Aporeto’s use of identity enables network security policies to now be managed up the stack at the application level.

Aporeto offers a turn-key enterprise SaaS solution that works well for multi-cluster Kubernetes deployments across multiple geographies at scale. All that is required for the user is to deploy an Aporeto enforcer on k8 nodes or VMs. The Aporeto solution protects the whole node and not just the PODs in a Kubernetes cluster.

With Aporeto, security is implemented at layers L3-L7 with end-to-end authentication, authorization and optional encryption for a Zero Trust security posture. The layer of enforcement is a user choice, and it allows users to balance between performance overheads and security requirements. Aporeto assigns a cryptographically signed and attested service identity to every Kubernetes POD. Security policies remain portable and persistent no matter where the POD resides.

“Helping customers tackle complex cloud security challenges, while reducing operational complexity, strengthening overall security posture and addressing scalability issues is job one at Aporeto,” said Jason Schmitt, CEO of Aporeto. “With our identity-based Zero Trust cloud security solution, we not only solve distributed policy enforcement across Kubernetes single and multi-cluster environments, but provide persistent policy management for heterogeneous infrastructure and workloads.”

Aporeto works seamlessly with other Kubernetes technologies, including all existing and cloud-native container network interface (CNI) architectures and service mesh products such as Istio. Aporeto can automatically import and apply Kubernetes network policy definitions to provide DevOps with a familiar YAML interface and backward compatibility for declaring allowed network connections, eliminating stacks of unnecessary YAML files and accelerating application deployment. Additionally, Aporeto supports all formats of Kubernetes including managed offerings such as AWS EKS, Google GKE, Microsoft Azure AKS, IBM Cloud Kubernetes, as well as private installations such as Red Hat OpenShift, kubeadm and Heptio.

Share this

Industry News

July 09, 2020

ShiftLeft released a new version of NextGen Static Analysis (NG SAST), including new workflows, purpose-built for developers that significantly improve security, while enhancing productivity.

July 09, 2020

RunSafe Security announced a partnership with JFrog that will enable RunSafe to supercharge binary protections via a simple plugin that JFrog users can deploy within their Artifactory repositories and instantly protect binaries and containers.

July 09, 2020

LeanIX closed $80 million in Series D funding led by new investor Goldman Sachs Growth.

July 08, 2020

Afi.ai introduced Afi Data Platform, a cloud-based replication and resiliency service that helps to monitor, predict downtime and recover K8s applications.

July 08, 2020

D2iQ announced the release of Conductor, a new interactive learning platform that enables enterprises to access hands-on cloud native courses and training.

July 08, 2020

SUSE entered into a definitive agreement to acquire Rancher Labs.

July 07, 2020

Micro Focus announced AI-powered enhancements to the intelligent testing capabilities of the UFT Family, a unified set of solutions designed to reduce the overall complexity of automating the functional testing processes.

July 07, 2020

Push Technology announced the launch of a new Service API capability for Diffusion Cloud, Push’s Real-Time API Management Cloud Platform.

July 07, 2020

Lightrun exited stealth and announced $4M in seed funding for the first complete continuous debugging and observability platform for production applications.

July 01, 2020

JFrog announced the launch of ChartCenter, a free, security-focused central repository of Helm charts for the community.

July 01, 2020

Kong announced a significant upgrade to open source Kuma, Kuma 0.6, available today.

July 01, 2020

Compuware Corporation, a BMC company, announced new capabilities that further automate and integrate test data and test case execution, empowering IT teams to achieve high-performance application development quality, velocity and efficiency.

June 30, 2020

Couchbase announced the general availability of Couchbase Cloud, a fully-managed Database-as-a-Service (DBaaS).

June 30, 2020

Split Software announced new capabilities designed to accelerate the adoption of feature flags in large-scale organizations.

June 30, 2020

WhiteHat Security announced a discounted Web + Mobile Application Security bundle to help organizations secure the digital future.