StackRox Kubernetes Security Platform 3.0 Released
November 13, 2019

StackRox announced version 3.0 of the StackRox Kubernetes Security Platform.

The latest release incorporates features for configuration management and vulnerability management that enable businesses to achieve stronger protection of cloud-native, containerized applications. StackRox now makes it easier to discover and understand vulnerabilities across Kubernetes environments, identify insecure configurations across applications and infrastructure, and integrate with additional ecosystem platforms.

StackRox provides dedicated dashboards and workflows for Kubernetes configuration management that help reduce misconfigurations, thereby reducing risk:

- Interactive dashboards - StackRox enables users to view risk-prioritized misconfigurations, easily drill down to critical information about where misconfigurations exist, determine relevant context required for effective remediation, and speed collaboration between security and DevOps teams.

- Kubernetes role-based access control (RBAC) assessment – StackRox continuously monitors permissions for users and service accounts to help mitigate against excessive privileges being granted – a source of potential exploits of various threat vectors – as well as identify potential misconfigurations and inform risk analysis.

- Kubernetes secrets access monitoring – StackRox discovers secrets in Kubernetes and monitors which deployments can use them to ensure unnecessary access can be limited.

- Kubernetes-specific policy enforcement – StackRox identifies configurations in Kubernetes related to network exposures, privileged containers, processes running as root, compliance with industry standards, and other factors to determine policy violations.

In addition to configuration management, StackRox is also introducing advanced vulnerability management capabilities, including:

- Interactive dashboards – StackRox provides interactive views that provide risk-prioritized snapshots across your environment, highlighting vulnerabilities in both images and Kubernetes.

- Discovery of Kubernetes vulnerabilities – StackRox provides visibility into critical vulnerabilities that exist in the Kubernetes platform itself, including those related to the Kubernetes API server that have been disclosed by the Kubernetes product security team, in the recent security audit, and via other channels.

- Language-specific vulnerabilities – StackRox scans container images for additional vulnerabilities that are language-dependent, providing greater coverage across containerized applications.

Along with the new feature set for configuration management and vulnerability management, the latest release of the StackRox Kubernetes Security Platform also adds support for the following ecosystem platforms:

- CRI-O container runtime – StackRox supports CRI-O, a lightweight runtime optimized for Kubernetes that is an Open Container Initiative (OCI)-compliant implementation of the Kubernetes Container Runtime Interface. CRI-O is a Cloud Native Computing Foundation (CNCF) incubation-level hosted project.

- Kubernetes on Distributed Cloud Operating System (DC/OS) – StackRox supports using Kubernetes on the DC/OS platform, developed and maintained by D2iQ (formerly Mesosphere).

- Microsoft Teams integration – StackRox natively integrates with Microsoft Teams to deliver security alerts and violation data directly to the right resource owners across security and DevOps.

"When it comes to Kubernetes security, new challenges related to vulnerabilities and misconfigurations continue to emerge," said Wei Lien Dang, VP of Product and co-founder, StackRox. "DevOps and Security teams need solutions that quickly and easily solve these issues. StackRox 3.0 is the first container security platform with the capabilities orgs need to effectively deal with Kubernetes configurations and vulnerabilities, so they can reduce risk to what matters most – their applications and their customer's data."

StackRox has made all these capabilities immediately available in this latest major update to its StackRox Kubernetes Security Platform.

Share this

Industry News

February 27, 2020

Datadog announced an integration with Nessus from Tenable.

February 26, 2020

Perforce Software released a free tool for organizations considering open source software - OpenLogic Stack Builder.

February 26, 2020

Applause announced a new partnership with Infosys to provide broader end-to-end digital experience testing services to clients.

February 26, 2020

RapidMiner announced the release of its platform enhancement, RapidMiner 9.6. This update prioritizes people – not technology – at the center of the enterprise AI journey, providing new, unique experiences to empower users of varying backgrounds and abilities.

February 25, 2020

JFrog announced the availability of the "JFrog Platform," a hybrid, multi-cloud, universal DevOps platform.

February 25, 2020

Nureva added new agile canvas templates to Span Workspace, including a heat map developed by Jeff Sutherland, the co-creator of Scrum and founder of Scrum Inc. and Scrum@Scale.

February 25, 2020

Agiloft announced the addition of its new Agiloft AI Engine, complete with prebuilt AI Capabilities for contract management and an open AI integration that allows customers to incorporate custom-built AI tools into the no-code platform.

February 24, 2020

Cloudify announced that its latest product update - Cloudify version 5 - features an Environment as a Service component, designed to achieve consistent delivery and management of hybrid-cloud services and network infrastructures across CI/CD pipelines - at scale.

February 24, 2020

Checkmarx announced new enhancements to its Software Security Platform to empower more seamless implementation and automation of application security testing (AST) in modern development and DevOps environments.

February 24, 2020

Rapid7 and Snyk announced a strategic partnership to deliver end-to-end application security to organizations developing cloud native applications.

February 20, 2020

The American Council for Technology and Industry Advisory Council (ACT-IAC), the premier public-private partnership dedicated to advancing government through the application of information technology, officially announced the release of the DevOps Primer.

It was produced through a collaborative, volunteer effort by a working group from government and industry, hosted by the ACT-IAC Emerging Technology Community of Interest (COI).

February 20, 2020

DLT Solutions, a subsidiary of Tech Data, launched the Secure Software Factory (SSF), a framework that provides the U.S. public sector with consistent development and deployment of high-quality, scalable, resilient and secure software throughout an application’s lifecycle.

February 20, 2020

Netography announced the general availability of the company’s Security Operations Platform.

February 19, 2020

Perfecto by Perforce announced its integration with Katalon Studio.

February 19, 2020

Radware announced the Alteon Cloud Control as part of its Alteon Multi-Cloud Solution designed to simplify the deployment of secured application delivery services across public and private cloud environments.