Aporeto Announces Zero Trust Cloud Security Solution
August 07, 2019

Aporeto announced its cloud network security solution for seamless distributed policy management across Kubernetes multi-cluster and container environments, using a unique application identity-based approach to security instead of relying on IP addresses.

Aporeto’s use of identity enables network security policies to now be managed up the stack at the application level.

Aporeto offers a turn-key enterprise SaaS solution that works well for multi-cluster Kubernetes deployments across multiple geographies at scale. All that is required for the user is to deploy an Aporeto enforcer on k8 nodes or VMs. The Aporeto solution protects the whole node and not just the PODs in a Kubernetes cluster.

With Aporeto, security is implemented at layers L3-L7 with end-to-end authentication, authorization and optional encryption for a Zero Trust security posture. The layer of enforcement is a user choice, and it allows users to balance between performance overheads and security requirements. Aporeto assigns a cryptographically signed and attested service identity to every Kubernetes POD. Security policies remain portable and persistent no matter where the POD resides.

“Helping customers tackle complex cloud security challenges, while reducing operational complexity, strengthening overall security posture and addressing scalability issues is job one at Aporeto,” said Jason Schmitt, CEO of Aporeto. “With our identity-based Zero Trust cloud security solution, we not only solve distributed policy enforcement across Kubernetes single and multi-cluster environments, but provide persistent policy management for heterogeneous infrastructure and workloads.”

Aporeto works seamlessly with other Kubernetes technologies, including all existing and cloud-native container network interface (CNI) architectures and service mesh products such as Istio. Aporeto can automatically import and apply Kubernetes network policy definitions to provide DevOps with a familiar YAML interface and backward compatibility for declaring allowed network connections, eliminating stacks of unnecessary YAML files and accelerating application deployment. Additionally, Aporeto supports all formats of Kubernetes including managed offerings such as AWS EKS, Google GKE, Microsoft Azure AKS, IBM Cloud Kubernetes, as well as private installations such as Red Hat OpenShift, kubeadm and Heptio.

Share this

Industry News

December 11, 2019

Bonitasoft announced that the Bonita platform is now available with advanced low-code features that permit better collaboration between citizen developers and professional developers.

December 11, 2019

Solo.io announced WebAssembly Hub, a service for building, sharing, discovering and deploying WebAssembly (Wasm) extensions for Envoy Proxy-based service meshes.

December 11, 2019

Datawire unveiled the new Ambassador Edge Stack 1.0, an integrated edge solution that empowers developer teams to rapidly configure the edge services required to build, deliver and scale their applications running in Kubernetes.

December 10, 2019

Redgate Software launched its fourth annual State of Database DevOps Survey.

December 10, 2019

Compuware has signed a definitive agreement to acquire the assets of INNOVATION Data Processing, a provider of enterprise data protection, business continuance and storage resource management solutions serving the mainframe market.

December 10, 2019

Dynatrace announced its Autonomous Cloud Enablement (ACE) Practice to accelerate DevOps’ movement to autonomous cloud operations.

December 09, 2019

NS1, announced the expansion of its suite of integrations to include Kubernetes, Consul, Avi Networks (VMWare NSX), NGINX, and HAProxy.

December 09, 2019

CloudBees announced an extension of its partnership with Google. As a Google Cloud Run launch partner, CloudBees will offer developers more flexibility in their deployment of containerized applications.

December 09, 2019

EPAM Systems has expanded its crowdtesting software solutions to enable user story testing.

December 05, 2019

Parasoft announced the newest release of Parasoft C/C++test, the unified C and C++ development testing solution for enterprise and embedded applications.

December 05, 2019

Datadog announced Security Monitoring, a new product that enables real-time threat detection across the entire stack and deeper collaboration between security, developers, and operations teams.

December 05, 2019

Pulumi announced the availability of Pulumi Crosswalk for Kubernetes, an open source collection of frameworks, tools and user guides that help developers and operators work better together delivering production workloads using Kubernetes.

December 04, 2019

CloudBees announced a Preview Program for CloudBees CI/CD powered by Jenkins X, a Software as a Service (SaaS) continuous integration and continuous delivery solution running on Google Cloud Platform.

December 04, 2019

Rancher Labs announced the general availability of K3s, their lightweight, certified Kubernetes distribution purpose built for small footprint workloads, along with the beta release of Rio, their new application deployment engine for Kubernetes that delivers a fully integrated deployment experience from operations to pipeline.

December 04, 2019

WhiteSource announced a new integration with Codefresh, the Kubernetes-native CI/CD solution.