SmartBear announced a new version of its API design and documentation tool, SwaggerHub, integrating Stoplight’s API open source tools.
StackRox Kubernetes Security Platform 2.5 Released
August 29, 2019
-StackRox announced the general availability of version 2.5 of the StackRox Kubernetes Security Platform.
The new version includes enhanced deployment and runtime controls that enable organizations to seamlessly enforce security controls to improve use cases including vulnerability management, network segmentation, configuration management, and threat detection.
These security controls further strengthen StackRox's position as the only Kubernetes-native container security platform that leverages inherent Kubernetes capabilities for policy enforcement. With StackRox, organizations can increasingly adopt a "security as code" model and ensure that security is built in to the infrastructure versus bolted on.
The enhanced security controls available in version 2.5 of the StackRox Kubernetes Security Platform include:
- Kubernetes Network Policy Generator — StackRox automatically baselines network activity, identifies allowed but unnecessary network connectivity, and updates Kubernetes network policies to achieve more secure network configurations.
- Automated Process Whitelisting — StackRox leverages machine learning to baseline process activity within containers, automatically identify anomalous processes that operators can selectively whitelist, and can take specified action to prevent threats at runtime.
- Dynamic Admission Control — StackRox can be optimized to provide a Kubernetes admission controller so organizations can prevent the deployment of containers based on pre-configured or custom policies set within StackRox.
- Kubernetes RBAC Assessment — StackRox analyzes Kubernetes Role-Based Access Control (RBAC) settings to understand user and service account privileges and applies this context to determine misconfigurations, identify best practice violations, inform risk assessment, and check compliance with industry standards and custom policies.
- Scoped Access Control — StackRox enhancements to role-based access control (RBAC) features allow organizations to manage and limit user access based on Kubernetes boundaries such as clusters and namespaces.
- Improved Offline Deployment — StackRox now includes additional features for customers running in air-gapped networks with no Internet connectivity, including custom security notices, offline vulnerability definition updates, and a streamlined deployment experience.
"Kubernetes provides the ideal foundation for us to provide robust, portable, and consistent security across on-premise, cloud, and hybrid infrastructure environments without creating additional operational risk," said Wei Lien Dang, co-founder and VP of Product at StackRox. "We're able to support our customers' needs for new security controls that are aligned with DevOps workflows and toolchains and are easy to implement at scale."
These new security capabilities are available in the current release of the StackRox Kubernetes Security Platform.
Industry News
April 18, 2024
Red Hat announced updates to Red Hat Trusted Software Supply Chain.
April 18, 2024
Tricentis announced the latest update to the company’s AI offerings with the launch of Tricentis Copilot, a suite of solutions leveraging generative AI to enhance productivity throughout the entire testing lifecycle.
April 17, 2024
CIQ launched fully supported, upstream stable kernels for Rocky Linux via the CIQ Enterprise Linux Platform, providing enhanced performance, hardware compatibility and security.
April 17, 2024
Redgate launched an enterprise version of its database monitoring tool, providing a range of new features to address the challenges of scale and complexity faced by larger organizations.
April 17, 2024
Snyk announced the expansion of its current partnership with Google Cloud to advance secure code generated by Google Cloud’s generative-AI-powered collaborator service, Gemini Code Assist.
April 16, 2024
Kong announced the commercial availability of Kong Konnect Dedicated Cloud Gateways on Amazon Web Services (AWS).
April 16, 2024
Pegasystems announced the general availability of Pega Infinity ’24.1™.
April 16, 2024
Sylabs announces the launch of a new certification focusing on the Singularity container platform.
April 15, 2024
OpenText™ announced Cloud Editions (CE) 24.2, including OpenText DevOps Cloud and OpenText™ DevOps Aviator.
April 15, 2024
Postman announced its acquisition of Orbit, the community growth platform for developer companies.
April 11, 2024
Check Point® Software Technologies Ltd. announced new email security features that enhance its Check Point Harmony Email & Collaboration portfolio: Patented unified quarantine, DMARC monitoring, archiving, and Smart Banners.
April 11, 2024
Automation Anywhere announced an expanded partnership with Google Cloud to leverage the combined power of generative AI and its own specialized, generative AI automation models to give companies a powerful solution to optimize and transform their business.
April 11, 2024
Jetic announced the release of Jetlets, a low-code and no-code block template, that allows users to easily build any technically advanced integration use case, typically not covered by alternative integration platforms.
April 10, 2024
Progress announced new powerful capabilities and enhancements in the latest release of Progress® Sitefinity®.
