StackRox Kubernetes Security Platform 2.5 Released
August 29, 2019

-StackRox announced the general availability of version 2.5 of the StackRox Kubernetes Security Platform.

The new version includes enhanced deployment and runtime controls that enable organizations to seamlessly enforce security controls to improve use cases including vulnerability management, network segmentation, configuration management, and threat detection.

These security controls further strengthen StackRox's position as the only Kubernetes-native container security platform that leverages inherent Kubernetes capabilities for policy enforcement. With StackRox, organizations can increasingly adopt a "security as code" model and ensure that security is built in to the infrastructure versus bolted on.

The enhanced security controls available in version 2.5 of the StackRox Kubernetes Security Platform include:

- Kubernetes Network Policy Generator — StackRox automatically baselines network activity, identifies allowed but unnecessary network connectivity, and updates Kubernetes network policies to achieve more secure network configurations.

- Automated Process Whitelisting — StackRox leverages machine learning to baseline process activity within containers, automatically identify anomalous processes that operators can selectively whitelist, and can take specified action to prevent threats at runtime.

- Dynamic Admission Control — StackRox can be optimized to provide a Kubernetes admission controller so organizations can prevent the deployment of containers based on pre-configured or custom policies set within StackRox.

- Kubernetes RBAC Assessment — StackRox analyzes Kubernetes Role-Based Access Control (RBAC) settings to understand user and service account privileges and applies this context to determine misconfigurations, identify best practice violations, inform risk assessment, and check compliance with industry standards and custom policies.

- Scoped Access Control — StackRox enhancements to role-based access control (RBAC) features allow organizations to manage and limit user access based on Kubernetes boundaries such as clusters and namespaces.

- Improved Offline Deployment — StackRox now includes additional features for customers running in air-gapped networks with no Internet connectivity, including custom security notices, offline vulnerability definition updates, and a streamlined deployment experience.

"Kubernetes provides the ideal foundation for us to provide robust, portable, and consistent security across on-premise, cloud, and hybrid infrastructure environments without creating additional operational risk," said Wei Lien Dang, co-founder and VP of Product at StackRox. "We're able to support our customers' needs for new security controls that are aligned with DevOps workflows and toolchains and are easy to implement at scale."

These new security capabilities are available in the current release of the StackRox Kubernetes Security Platform.

Share this

Industry News

July 09, 2020

ShiftLeft released a new version of NextGen Static Analysis (NG SAST), including new workflows, purpose-built for developers that significantly improve security, while enhancing productivity.

July 09, 2020

RunSafe Security announced a partnership with JFrog that will enable RunSafe to supercharge binary protections via a simple plugin that JFrog users can deploy within their Artifactory repositories and instantly protect binaries and containers.

July 09, 2020

LeanIX closed $80 million in Series D funding led by new investor Goldman Sachs Growth.

July 08, 2020

Afi.ai introduced Afi Data Platform, a cloud-based replication and resiliency service that helps to monitor, predict downtime and recover K8s applications.

July 08, 2020

D2iQ announced the release of Conductor, a new interactive learning platform that enables enterprises to access hands-on cloud native courses and training.

July 08, 2020

SUSE entered into a definitive agreement to acquire Rancher Labs.

July 07, 2020

Micro Focus announced AI-powered enhancements to the intelligent testing capabilities of the UFT Family, a unified set of solutions designed to reduce the overall complexity of automating the functional testing processes.

July 07, 2020

Push Technology announced the launch of a new Service API capability for Diffusion Cloud, Push’s Real-Time API Management Cloud Platform.

July 07, 2020

Lightrun exited stealth and announced $4M in seed funding for the first complete continuous debugging and observability platform for production applications.

July 01, 2020

JFrog announced the launch of ChartCenter, a free, security-focused central repository of Helm charts for the community.

July 01, 2020

Kong announced a significant upgrade to open source Kuma, Kuma 0.6, available today.

July 01, 2020

Compuware Corporation, a BMC company, announced new capabilities that further automate and integrate test data and test case execution, empowering IT teams to achieve high-performance application development quality, velocity and efficiency.

June 30, 2020

Couchbase announced the general availability of Couchbase Cloud, a fully-managed Database-as-a-Service (DBaaS).

June 30, 2020

Split Software announced new capabilities designed to accelerate the adoption of feature flags in large-scale organizations.

June 30, 2020

WhiteHat Security announced a discounted Web + Mobile Application Security bundle to help organizations secure the digital future.