Styra Adds Compliance Pack and Policy Stack to Declarative Authorization Service
December 03, 2019

Styra is addressing one of the most significant enterprise blockers of Kubernetes: compliance. With Styra, enterprises can move Kubernetes clusters into production en masse while complying with traditional governance, audit, and compliance rules and regulations.

Styra is launching new features for its Kubernetes policy and compliance solution, Declarative Authorization Service (DAS). The DAS enhancements include the first in a series of Compliance Packs, a cohesive set of Kubernetes admission control policies which provide guardrails in compliance with regulatory standards; and Policy Stacks, which allow enterprises to easily manage a uniform set of policies across multiple clusters that perform similar functions (e.g., all production clusters, or all clusters regulated by PCI).

Styra’s commercial Declarative Authorization Service provides a management plane to define and apply context-based guardrails -- built from a graphical policy library -- which mitigate risks, reduce human error, and accelerate development. Styra DAS makes management of distributed OPA deployments possible, facilitates multi-cluster and multi-cloud management, and enables DevOps teams to prove security and compliance both internally and externally.

New Styra Declarative Authorization Service (DAS) Features Summary:

● Styra’s Compliance Packs are groups of policies and best practices that enable security and compliance teams to ensure their Kubernetes environments are in continuous compliance with appropriate regulations or standards. The first pack, released today at KubeCon in San Diego, is for PCI DSS v3.2; it includes ~40 discrete policies across all 12 specified requirements, providing controls for network, config management, data protection and privacy, privilege management, and more. This Compliance Pack provides guardrails for network policy and ingress namespace and pod selectors; enforces auditable and compliant encryption and key management; and enhances role-based access control (RBAC) with consistent and clearly-defined roles and responsibilities.

● New Policy Stacks features for Kubernetes allows users to create and save policy sets (Policy Stacks) and apply them across many clusters, simply and easily. This will enable teams to monitor group of clusters to ensure compliance and identify anomalies early.

“As Kubernetes goes mainstream, modern app environments are being subjected to the same audit and compliance scrutiny that have applied for the last 25 years,” says Sumana Annam, VP Products, Styra. “However, the old black-box approach -- surrounding monolithic apps with siloed, standalone tools -- cannot address the complexity of containerized applications. Styra DAS extends compliance controls directly into Kubernetes so that teams can prove that their app clusters are safe, secure, and compliant with both internal and external regulations.”

Share this

Industry News

January 22, 2020

CollabNet VersionOne and XebiaLabs have merged.

January 22, 2020

Keyfactor announced DevOps integrations with automation and containerization providers Ansible, Docker, HashiCorp, Jenkins and Kubernetes to offer security-first services and solutions designed to seamlessly integrate with existing enterprise tools and applications.

January 22, 2020

Sysdig raised $70 million in Series E funding.

January 21, 2020

Red Hat announced the general availability of Red Hat OpenShift Container Storage 4 to deliver an integrated, multicloud experience to Red Hat OpenShift Container Platform users.

January 21, 2020

Snyk has secured a $150 million investment, led by Stripes, a leading New York-based growth equity firm.

January 21, 2020

vChainannounced the close of a $7M Series A investment round.

January 16, 2020

VAST Data announced the general availability of its new Container Storage Interface (CSI).

January 16, 2020

Fugue has open sourced Regula, a tool that evaluates Terraform infrastructure-as-code for security misconfigurations and compliance violations prior to deployment.

January 16, 2020

WhiteHat Security will offer free application scanning services to federal, state and municipal agencies in North America.

January 15, 2020

Micro Focus announced the release of Micro Focus AD Bridge 2.0, offering IT administrators the ability to extend Active Directory (AD) controls from on-premises resources, including Windows and Linux devices to the cloud - a solution not previously offered in the marketplace.

January 15, 2020

SaltStack announced the availability of three new open-source innovation modules: Heist, Umbra, and Idem.

January 15, 2020

ShiftLeft announced a partnership and deep integration with CircleCI that enables organizations to insert security directly into developer pull requests from code repositories.

January 14, 2020

Containous closed $10 million in Series A funding.

January 13, 2020

JFrog announced the launch of the free ConanCenter, enabling better search and discovery while streamlining C/C++ package management.

January 13, 2020

Perfect Sense launched Gyro - a cloud management tool that mitigates the risks associated with manually provisioning and managing infrastructure, lack of standards in configurations, and unpredictable results from changes to cloud infrastructure.