StackRox Kubernetes Security Platform 3.0 Released
November 13, 2019

StackRox announced version 3.0 of the StackRox Kubernetes Security Platform.

The latest release incorporates features for configuration management and vulnerability management that enable businesses to achieve stronger protection of cloud-native, containerized applications. StackRox now makes it easier to discover and understand vulnerabilities across Kubernetes environments, identify insecure configurations across applications and infrastructure, and integrate with additional ecosystem platforms.

StackRox provides dedicated dashboards and workflows for Kubernetes configuration management that help reduce misconfigurations, thereby reducing risk:

- Interactive dashboards - StackRox enables users to view risk-prioritized misconfigurations, easily drill down to critical information about where misconfigurations exist, determine relevant context required for effective remediation, and speed collaboration between security and DevOps teams.

- Kubernetes role-based access control (RBAC) assessment – StackRox continuously monitors permissions for users and service accounts to help mitigate against excessive privileges being granted – a source of potential exploits of various threat vectors – as well as identify potential misconfigurations and inform risk analysis.

- Kubernetes secrets access monitoring – StackRox discovers secrets in Kubernetes and monitors which deployments can use them to ensure unnecessary access can be limited.

- Kubernetes-specific policy enforcement – StackRox identifies configurations in Kubernetes related to network exposures, privileged containers, processes running as root, compliance with industry standards, and other factors to determine policy violations.

In addition to configuration management, StackRox is also introducing advanced vulnerability management capabilities, including:

- Interactive dashboards – StackRox provides interactive views that provide risk-prioritized snapshots across your environment, highlighting vulnerabilities in both images and Kubernetes.

- Discovery of Kubernetes vulnerabilities – StackRox provides visibility into critical vulnerabilities that exist in the Kubernetes platform itself, including those related to the Kubernetes API server that have been disclosed by the Kubernetes product security team, in the recent security audit, and via other channels.

- Language-specific vulnerabilities – StackRox scans container images for additional vulnerabilities that are language-dependent, providing greater coverage across containerized applications.

Along with the new feature set for configuration management and vulnerability management, the latest release of the StackRox Kubernetes Security Platform also adds support for the following ecosystem platforms:

- CRI-O container runtime – StackRox supports CRI-O, a lightweight runtime optimized for Kubernetes that is an Open Container Initiative (OCI)-compliant implementation of the Kubernetes Container Runtime Interface. CRI-O is a Cloud Native Computing Foundation (CNCF) incubation-level hosted project.

- Kubernetes on Distributed Cloud Operating System (DC/OS) – StackRox supports using Kubernetes on the DC/OS platform, developed and maintained by D2iQ (formerly Mesosphere).

- Microsoft Teams integration – StackRox natively integrates with Microsoft Teams to deliver security alerts and violation data directly to the right resource owners across security and DevOps.

"When it comes to Kubernetes security, new challenges related to vulnerabilities and misconfigurations continue to emerge," said Wei Lien Dang, VP of Product and co-founder, StackRox. "DevOps and Security teams need solutions that quickly and easily solve these issues. StackRox 3.0 is the first container security platform with the capabilities orgs need to effectively deal with Kubernetes configurations and vulnerabilities, so they can reduce risk to what matters most – their applications and their customer's data."

StackRox has made all these capabilities immediately available in this latest major update to its StackRox Kubernetes Security Platform.

Share this

Industry News

December 12, 2019

Accenture launched the Accenture Cloud Native Core Solution to help enterprises leverage the public cloud for maximum business agility and results.

December 12, 2019

SmartBear released CucumberStudio.

December 12, 2019

Upbound, the company behind open source projects Rook and Crossplane, announced an integration to manage multiple cloud services from a single interface in GitLab.

December 11, 2019

Bonitasoft announced that the Bonita platform is now available with advanced low-code features that permit better collaboration between citizen developers and professional developers.

December 11, 2019

Solo.io announced WebAssembly Hub, a service for building, sharing, discovering and deploying WebAssembly (Wasm) extensions for Envoy Proxy-based service meshes.

December 11, 2019

Datawire unveiled the new Ambassador Edge Stack 1.0, an integrated edge solution that empowers developer teams to rapidly configure the edge services required to build, deliver and scale their applications running in Kubernetes.

December 10, 2019

Redgate Software launched its fourth annual State of Database DevOps Survey.

December 10, 2019

Compuware has signed a definitive agreement to acquire the assets of INNOVATION Data Processing, a provider of enterprise data protection, business continuance and storage resource management solutions serving the mainframe market.

December 10, 2019

Dynatrace announced its Autonomous Cloud Enablement (ACE) Practice to accelerate DevOps’ movement to autonomous cloud operations.

December 09, 2019

NS1, announced the expansion of its suite of integrations to include Kubernetes, Consul, Avi Networks (VMWare NSX), NGINX, and HAProxy.

December 09, 2019

CloudBees announced an extension of its partnership with Google. As a Google Cloud Run launch partner, CloudBees will offer developers more flexibility in their deployment of containerized applications.

December 09, 2019

EPAM Systems has expanded its crowdtesting software solutions to enable user story testing.

December 05, 2019

Parasoft announced the newest release of Parasoft C/C++test, the unified C and C++ development testing solution for enterprise and embedded applications.

December 05, 2019

Datadog announced Security Monitoring, a new product that enables real-time threat detection across the entire stack and deeper collaboration between security, developers, and operations teams.

December 05, 2019

Pulumi announced the availability of Pulumi Crosswalk for Kubernetes, an open source collection of frameworks, tools and user guides that help developers and operators work better together delivering production workloads using Kubernetes.