CloudPassage Expands Cloud Security Capabilities for Docker, Kubernetes, and Container-Related Services on AWS
July 27, 2020

CloudPassage announced expanded container-related security capabilities for its Halo cloud security platform.

A range of Halo's capabilities have been extended to Docker and Kubernetes environments hosted in public clouds or on-premises, including configuration security assessment, vulnerability management, log event inspection, threat detection, and compliance monitoring. These capabilities support generic Docker hosts, Kubernetes nodes, and AWS Elastic Container Service (ECS) instances. Halo now also provides API-based security posture management (CSPM) for AWS Elastic Kubernetes Service (EKS) and AWS Elastic Container Registry (ECR).

These new features extend the ability of infosec teams to use Halo to maintain security and compliance in dynamic, diverse, and distributed cloud computing environments. The Halo security platform unifies and automates security controls and compliance across servers, containers, and IaaS resources in any mix of public, private, hybrid, and multi-cloud environments.

"Enterprises of all sizes are increasingly using containers to take advantage of the speed, efficiency, portability, and scale benefits they deliver. However, containers' ephemeral nature and ability to run virtually anywhere can create challenges for information security teams tasked with universal computing asset security," said Carson Sweet, CloudPassage CEO and cofounder. "These new features further extend Halo's unified capabilities to address the market need to do more with a single unified platform."

Details of these capabilities include:

- Automatic log event inspection for Docker hosts and Kubernetes nodes that enables event-based intrusion detection, administrative access auditing, and compliance-related event collection (including policy templates)

- Configuration security and compliance monitoring for Docker hosts, ECS instances, Kubernetes nodes, Fargate deployments, and ECR instances (including policy templates)

- File integrity monitoring for Docker hosts, ECS instances, and Kubernetes nodes that enables intrusion detection and configuration drift (including policy templates)

- Network traffic discovery for Docker hosts, ECS instances, and Kubernetes nodes

- Automatic seek-and-scan of Docker images when unknown images launch on monitored Docker and Kubernetes hosts to ensure every running image is scanned and unknown—or "rogue"—images are detected

- Kubernetes-native DaemonSet support automates deployment of the Halo microagent on every Kubernetes node for easy security management (includes Helm chart support)

- Additional enhancements including Halo API updates to include all new capabilities for integration with downstream workflows and a Halo Portal overview dashboard that summarizes and highlights data for container-specific security use cases

Share this

Industry News

August 12, 2020

Datadog announced the general availability of Continuous Profiler, a low-overhead 24x7 code profiler that measures the performance of code in production.

August 12, 2020

Pulumi announced significant new capabilities for Kubernetes, including cloud native deployment automation options, ecosystem integrations and migration tools.

August 12, 2020

The Linux Foundation, the nonprofit organization enabling mass innovation through open source, announced the availability of a new training course, LFS268 - CI/CD with Jenkins X.

August 11, 2020

Datadog announced the launch of Incident Management.

August 11, 2020

Progress announced the latest release of Progress® Test Studio®, the automated UI load and performance testing tool.

August 11, 2020

Symmetry Systems emerged from stealth a year after raising $3 million in seed funding.

August 10, 2020

Red Hat announced the launch of Red Hat remote certification exams.

August 10, 2020

Signal Sciences announced an integration with Microsoft Azure App Service for the Signal Sciences next-gen Web Application Firewall (WAF) and Runtime Application Self-Protection (RASP) solution.

August 10, 2020

Copado announced Copado Government Cloud to help government agencies accelerate the time-to-value of Salesforce digital transformation projects.

August 06, 2020

Push Technology announced the launch of a new Kafka Adapter for their Diffusion Intelligent Data Mesh.

August 06, 2020

Appvia announced the launch of its Cost Prediction and Visibility tool, integrated within the latest version of its Kore platform.

August 06, 2020

LogiGear announced the newest addition to the TestArchitect™ family, TestArchitect Gondola.

August 05, 2020

Logz.io announced a partnership with HashiCorp, a provider in multi-cloud infrastructure automation software.

August 05, 2020

Digitate, a software venture of Tata Consultancy Services, announced the release of ignio™ AI.Assurance, an autonomous assurance product that enables enterprises to deliver better software faster, enhancing their business performance.

August 05, 2020

Harness acquired self-service Continuous Integration firm Drone.io, the creator of the open-source project Drone.