Rafay Launches Paralus
July 18, 2022

Rafay Systems launched a new open-source software project named Paralus to enable secure, audited access for developers, operations, SREs and CI/CD tools to remote Kubernetes (K8s) clusters.

Paralus offers access management for developers, architects, and CI/CD tools to remote K8s clusters by consolidating zero-trust access principles such as transaction level authentication and authorization into a single open-source tool. It helps engineering and architecture teams streamline access control for their fleet of K8s clusters spanning different operating environments, different public clouds and K8s distributions, and on-premises data centers operating behind firewalls.

Paralus provides a frictionless way for developers and architects to leverage open-source software that uses zero-trust principles to secure access to all K8s environments and harden security practices for cloud-native applications.

Paralus grants authorized users seamless and secure access to all clusters with a native and familiar kubectl experience by acting as a proxy between the users and systems needing access and the K8s API server. It also addresses one of K8s' main pain points by eliminating the burden of managing K8s access controls cluster by cluster. Without Paralus, companies must manually manage access to each cluster using jump hosts or VPNs, and build custom tooling to audit and map all actions performed to a user's identity – all of which which is error-prone and increases the risk of breaches as the number of clusters grows.

Along with helping directly manage role-based access control (RBAC) policies and assignments, Paralus enables:

- Creation of custom roles, users, and groups

- Dynamic and immediate changing and revoking of permissions

- Ability to control access via pre-configured roles across clusters, namespaces, projects, and more

- Seamless integration with Identity Providers (IdPs) allowing the use of external authentication engines for users and group definitions, such as GitHub, Google, Azure AD, Okta, and others

- Automatic logging of all user actions performed for audit and compliance purposes

- Flexible workflows with a modern web GUI, a CLI tool called pctl, and a Paralus API

"While Kuberentes is the de facto standard for container orchestration, companies have significant challenges related to securing this new, mission critical infrastructure. Rafay is leveraging its industry leadership and unmatched expertise in the Kubernetes arena to contribute this highly valuable asset to the community," said Haseeb Budhani, CEO and co-founder of Rafay Systems. "Today, Paralus' capabilities are the most widely used in the company's Kubernetes Operations Platform offering, and has been battle tested by thousands of architects, developers, operations, and DevSecOps professionals at world-leading companies. We are excited to open source this technology, submit Paralus to the Cloud-Native Computing Foundation (CNCF), and assist the broader community in solving this critical access management issue that plagues Kubernetes deployments."

Share this

Industry News

September 27, 2022

DevOps Institute will host SKILup Festival in Singapore on November 15, 2022.

September 27, 2022

Delinea announced the latest release of DevOps Secrets Vault, its high-speed vault for DevOps and DevSecOps teams.

September 27, 2022

The Apptainer community announced version 1.1.0 of the popular container system for secure, high-performance computing (HPC). Improvements in the new version provide a smaller attack surface for production deployments while offering features that improve and simplify the user experience.

September 26, 2022

Secure Code Warrior unveiled Coding Labs, a new mechanism that allows developers to more easily move from learning to applying secure coding knowledge, leading to fewer vulnerabilities in code.

September 26, 2022

ActiveState announced the availability of the ActiveState Artifact Repository.

September 26, 2022

Split Software announced the availability of its Feature Data Platform in the Microsoft Azure Marketplace.

September 22, 2022

Katalon announced the launch of the Katalon Platform, a modern and comprehensive software quality management platform that enables teams of any size to easily and efficiently test, launch, and optimize apps, products, and software.

September 22, 2022

StackHawk announced its Deeper API Security Test Coverage release.

September 21, 2022

Platform9 announced the launch of its latest open source project, Arlon.

September 21, 2022

Redpanda Data announced Redpanda Console.

September 21, 2022

mabl announced its availability as a private listing on Google Cloud Marketplace.

September 21, 2022

Zesty announced a $75 million Series B funding round led by B Capital and Series A investor Sapphire Ventures.

September 20, 2022

Opsera, the Continuous Orchestration platform for DevOps, announced a free trial of its no-code Salesforce Release Management platform for fast and secure Salesforce releases.

September 20, 2022

Sysdig announced ToDo and Remediation Guru.

September 20, 2022

AutoRABIT announced CodeScan Shield.