With Calico Cloud, security teams can implement proactive container security, to prevent, detect, and mitigate security breaches during build, deployment, and runtime
SAN FRANCISCO, August 31, 2022 /PRNewswire/ — Tigerwhich provides the industry’s only active Cloud-Native Application Protection Platform (CNAPP) with full-stack observability for containers and Kubernetes, today announced the General Availability (GA) of new container security features, including runtime malware protection, Image Assurance with container image scanning, runtime visibility of vulnerable workloads and access control policies.
With these features in Calico Cloud, customers have a single container security solution to improve security posture, reduce attack surface with fine-grained security controls, and provide defense threats from network and host threats. By identifying potential vulnerabilities during the development phase of the CI/CD pipeline, users can adopt a shift-left approach to security.
New container security features available in Calico Cloud include:
- Image scanning – Cloud-native application developers need access to safe and secure container images to build applications. Calico Cloud enables users to scan container images locally when needed, and export the results to share with stakeholders to improve their security posture. DevOps teams can use this approach to integrate the scanner utility into their CI/CD pipeline for a streamlined security operations model. Users can now get a detailed view of vulnerabilities in developing images, providing a first line of defense against bad actors.
- Vulnerability management with automatic blocking of failed images – Customers can achieve high compliance standards and reduce the risk of deploying vulnerable images with ingress policy controls that automatically block the deployment of failed images within their CI/CD pipeline .
- Visibility into high-risk workloads running in the environment – Teams can now prioritize remediation plans for existing workloads using a runtime view of high-risk workloads relative to image scan results. Using Calico’s security policies, these workloads can be isolated from the rest of the application giving development teams more time to fix issues, thereby easing their burden.
- Runtime threat defense from network and host-based threats – Calico Cloud offers runtime threat defense with malware protection and anomaly detection to protect containers and workloads from unknown threats and zero-day attacks. Calico’s malware detection engine uses a combination of machine learning and proprietary rulesets to detect suspicious activity in containers and workloads. Users can quickly create a security policy to quarantine and isolate the affected workload while developers work to mitigate the security issue. These new capabilities enhance Calico’s robust runtime threat defense features such as Intrusion Detection and Prevention (IDS/IPS), DDoS protection and workload-centric web application firewall (WAF)
“We are pleased to offer the only solution that takes a proactive approach to container security with a focus on preventing and reducing risk throughout the application lifecycle, from development to production,” said Ratan Tipirneni, President and CEO of Tigera. “Unlike competing solutions, which are reactive and focus on vulnerability detection, threat detection and alerting, Tigera’s solution doesn’t just identify vulnerabilities and threats. Instead, it proactively prevents attacks and mitigates risk by applying a zero-trust security approach to reduce the attack surface and prevent lateral movement of threats, thereby safeguarding sensitive data.”
Calico Cloud provides a unique solution that helps prevent and detect threats and mitigate risk in containers and Kubernetes environments during the build, deploy and runtime phases.
Press here to learn more about Tigera solutions or request a free trial.
About Tigera
Tiger provides the industry’s only active Cloud-Native Application Protection Platform (CNAPP) with full-stack observability for containers, Kubernetes, and the cloud. The company’s platform prevents, detects, troubleshoots, and automatically mitigates exposure risks of security issues during the build, deploy, and runtime phases. Tigera delivers its platform as a fully managed SaaS (Calico Cloud) or a self-managed service (Calico Enterprise). Its open-source offering, Calico Open Source, is the most widely accepted container networking and security solution. The Tigera platform defines security and observability as code to ensure consistent enforcement of security policies, enabling DevOps, platform, and security teams to protect workloads, detect threats, achieve continuous compliance, and troubleshoot service issues in real time.
Strengthens more than 100M container on 2M+ nodes in 166 countries, Calico software is supported by all major cloud providers and Kubernetes distributions, and is used by leading companies including AT&T, Discover, Merck, ServiceNow, HanseMerkur, RealPage, L3Harris, and Mindbody.
Contact:
Katherine Benfield for Tigera
Lumina Communications
[email protected]
SOURCE Tigera