StackRox Kubernetes Security Platform 2.5 Released
August 29, 2019

-StackRox announced the general availability of version 2.5 of the StackRox Kubernetes Security Platform.

The new version includes enhanced deployment and runtime controls that enable organizations to seamlessly enforce security controls to improve use cases including vulnerability management, network segmentation, configuration management, and threat detection.

These security controls further strengthen StackRox's position as the only Kubernetes-native container security platform that leverages inherent Kubernetes capabilities for policy enforcement. With StackRox, organizations can increasingly adopt a "security as code" model and ensure that security is built in to the infrastructure versus bolted on.

The enhanced security controls available in version 2.5 of the StackRox Kubernetes Security Platform include:

- Kubernetes Network Policy Generator — StackRox automatically baselines network activity, identifies allowed but unnecessary network connectivity, and updates Kubernetes network policies to achieve more secure network configurations.

- Automated Process Whitelisting — StackRox leverages machine learning to baseline process activity within containers, automatically identify anomalous processes that operators can selectively whitelist, and can take specified action to prevent threats at runtime.

- Dynamic Admission Control — StackRox can be optimized to provide a Kubernetes admission controller so organizations can prevent the deployment of containers based on pre-configured or custom policies set within StackRox.

- Kubernetes RBAC Assessment — StackRox analyzes Kubernetes Role-Based Access Control (RBAC) settings to understand user and service account privileges and applies this context to determine misconfigurations, identify best practice violations, inform risk assessment, and check compliance with industry standards and custom policies.

- Scoped Access Control — StackRox enhancements to role-based access control (RBAC) features allow organizations to manage and limit user access based on Kubernetes boundaries such as clusters and namespaces.

- Improved Offline Deployment — StackRox now includes additional features for customers running in air-gapped networks with no Internet connectivity, including custom security notices, offline vulnerability definition updates, and a streamlined deployment experience.

"Kubernetes provides the ideal foundation for us to provide robust, portable, and consistent security across on-premise, cloud, and hybrid infrastructure environments without creating additional operational risk," said Wei Lien Dang, co-founder and VP of Product at StackRox. "We're able to support our customers' needs for new security controls that are aligned with DevOps workflows and toolchains and are easy to implement at scale."

These new security capabilities are available in the current release of the StackRox Kubernetes Security Platform.

Share this

Industry News

September 12, 2019

Rafay Systems announced the general availability of its turnkey, SaaS-based offering designed to confront a complex set of ongoing challenges enterprises and service providers face when modernizing their applications.

September 12, 2019

StackRox announced the availability of the StackRox App for the Sumo Logic Continuous Intelligence Platform.

September 12, 2019

Lacework is receiving $42 million from Sutter Hill Ventures and Liberty Global Ventures.

September 11, 2019

Clubhouse released a fully featured Free Plan that offers the full power of its flagship product to teams up to 10 people.

September 11, 2019

Sectigo released integrations with five of the most popular DevOps configuration management and container orchestration platforms.

September 11, 2019

Kong announced the release of a new open source project called Kuma.

September 10, 2019

Parasoft is excited to announce that Parasoft SOAtest, an API and UI functional testing solution, has won a 2019 API Award in the Best in Microservices Infrastructure category.

September 10, 2019

Cohesity announced the launch of Cohesity Agile Dev and Test, a new solution that addresses a key bottleneck organizations face in building applications at speed.

September 10, 2019

Split Software announced the addition of Feature Monitoring, an automated detection capability for its feature delivery platform that reduces detection times of errors in a code release.

September 09, 2019

US Signal announced the launch of its managed Website and Application Security Solution.

September 09, 2019

Tasktop announced that Jama Software is now offering the cloud version of its Tasktop Integration Hub for Jama Connect to automate and visualize the flow of product-critical information across the software delivery value stream.

September 09, 2019

Mesosphere announced a significant expansion in strategy and product portfolio as well as a new company name - D2iQ.

September 05, 2019

Redgate launched SQL Monitor 9.1, the latest version of the world’s most popular tool for monitoring SQL Server estates.

September 05, 2019

US Signal announced the launch of its managed Website and Application Security Solution.

September 05, 2019

Pulumi Corporation announced the general availability of version 1.0 of its modern Infrastructure as Code platform.