Tigera Enhances Calico Cloud and Calico Enterprise
September 17, 2024

Tigera announced several new features for Calico Cloud and Calico Enterprise to improve the efficiency of remediating vulnerabilities in container images, and ensure compatibility with the latest deployment options for OpenShift.

Tigera enables DevOps and platform engineering teams to address key requirements for improving the security of their container platforms. The latest release of Calico Cloud advances this initiative by introducing several new capabilities that simplify identifying high-risk container images, improve the signal-to-noise ratio for scanning, and tune container-based threat detection to specific customer environments.

- Improved scanning mode that includes third-party vendor assessments: Security practitioners largely rely on the Common Vulnerability Scoring System (CVSS) to understand the severity of a vulnerability in a container image. However, in some cases, a trusted vendor may perform their own analysis of vulnerabilities that affect their software. This may result in the vendor providing justification for lowering the severity and neglecting to provide a fix. Now, Calico Cloud takes these vendor assessments into account by default to improve accuracy, and will automatically make adjustments to scan results so that teams can focus on remediation efforts on vulnerabilities that do pose a risk to their environment.

- Bulk exceptions available in Image Assurance: The new updates to Calico Cloud and Calico Enterprise also bolster managing the "noise floor" for vulnerabilities, allowing users to create exceptions with varying levels of scope in bulk via uploading a CSV file. This gives operators a way to tune their remediation efforts and focus their patching on vulnerabilities that pose the greatest risk to their environment. This CSV file can be generated for scan results using a combination of filters, which helps to streamline the process of creating exceptions and supports approval workflows that may exist outside of Calico Cloud.

- Integration with Jira for delegating and tracking remediation: Jira is one of the most popular tools among DevOps and application teams to assign and track work, from feature development to bug fixing or vulnerability remediation. Calico Cloud now provides an integration with Jira so operators can assign and track remediation directly from the Image Assurance UI. When a ticket is created from a scan result in Calico Cloud, all of the relevant container image and vulnerability details are automatically attached so developers can quickly ascertain the work required for remediation.

- Powerful new filtering capabilities: Image Assurance also includes powerful new filtering capabilities to segment scan results by over a dozen different variables that include both runtime and build time metadata. It enables users to achieve greater efficiency in vulnerability management for their cloud native applications.

- Customize and tune container-based threat detection: The enhancements to Calico Cloud also improve the accuracy and efficiency of detecting and responding to security events related to container-based threat detection. Administrators can now selectively choose which types of detectors to enable in their cluster, giving teams the ability to phase their deployment and tune and customize threat detection to their environment.

- Calico Enterprise adds support for Hosted Control Planes in OpenShift: Calico Enterprise has also added support for Hosted Control Planes, a popular new deployment option for Red Hat OpenShift. Hosted Control Planes allow users to create control planes as pods on a hosting cluster without the need for dedicated virtual or physical machines for each control plane. This allows customers with multiple OpenShift clusters to significantly reduce the footprint and operational costs associated with these platforms.

"Tigera continues leading the effort to empower DevOps and platform engineering teams to address key requirements for improving the security of their container platforms," said Amit Gupta, Chief Product Officer, Tigera. "Calico Cloud improves security posture with new vulnerability management capabilities at scale, and strengthens runtime security with real-time threat filtering, detection customization, and ITOps integrations. We're pleased to bring these new, critical capabilities to our customers."

Share this

Industry News

October 10, 2024

AWS has added support for Valkey 7.2 on Amazon ElastiCache and Amazon MemoryDB, a fully managed in-memory services.

October 10, 2024

MineOS announced a major upgrade: Data Subject Request Management (DSR) 2.0.

October 09, 2024

Snyk announced advancements to its platform to elevate risk-based application security through developer-first, AI-driven solutions.

October 09, 2024

Buildkite announced a Scale-Out Delivery Platform, providing the adaptability and scalability required by the world’s most demanding and complex computing environments.

October 09, 2024

MindStudio announced Serverless AI Functions as part of its new MindStudio for Developers offering.

October 08, 2024

Parasoft has achieved the widely recognized and respected TÜV SÜD certification for the development of its C/C++test CT (continuous testing) product.

October 08, 2024

StackGen announced enhanced support for developers utilizing Argo CD, a GitOps continuous delivery tool for Kubernetes.

October 08, 2024

Data Theorem announced the launch of Code Secure, the latest evolution in application security designed to protect the software supply chain from code to deployment.

October 08, 2024

Anthropic unveiled the Message Batches API – a cost-effective way to process large volumes of queries asynchronously.

October 07, 2024

Progress announced the winners of its 2024 OpenEdge North America Partner Awards.

October 07, 2024

RiverMeadow announced support for Red Hat OpenShift Virtualization, enabling organizations to seamlessly run and manage virtual machines alongside containerized applications in a single platform that can run in both on-premises and cloud environments.

October 07, 2024

Netlify announced three new enhancements to its product suite that will enable web application development and content publishing.

October 03, 2024

Check Point® Software Technologies Ltd. announced its position as a leader in The Forrester Wave™: Enterprise Firewalls, Q4 2024 report.

October 03, 2024

Sonar announced two new product capabilities for today’s AI-driven software development ecosystem.

October 03, 2024

Redgate announced a wide range of product updates supporting multiple database management systems (DBMS) across its entire portfolio, designed to support IT professionals grappling with today’s complex database landscape.