Aqua Security Announces Container Runtime Security Solution for CRI-O
May 07, 2018

Aqua Security announced early availability of its runtime security controls for workloads using the CRI-O runtime engine, including those managed using Red Hat OpenShift Container Platform.

CRI-O is an implementation of the Kubernetes CRI (Container Runtime Interface) that enables using OCI (Open Container Initiative) compatible runtimes. It is a lightweight alternative to using Docker as the runtime for Kubernetes. It allows Kubernetes to use any OCI-compliant runtime as the container runtime for running pods. Red Hat OpenShift Container Platform 3.9 introduced GA support for CRI-O as a runtime engine on its platform in April 2018.

"As standards in the cloud-native ecosystem continue to evolve towards simpler common frameworks, organizations must continue to maintain visibility and control over their workloads," said Amir Jerbi, CTO and co-founder of Aqua Security. "We are committed to helping customers secure their applications no matter where and how they are deployed. By extending our support to CRI-O and other emerging standards we are realizing our vision of 'secure once, run anywhere'."

Chris Morgan, Global Technical director, OpenShift Ecosystem at Red Hat said: "Security and compliance are top of mind for our enterprise customers, and the runtime protection capabilities delivered by certified OpenShift partners such as Aqua can help deliver this."

Aqua's container security platform increases the security of cloud-native applications by applying security controls across their entire lifecycle, from development to production. Runtime controls, which now support CRI-O, include:

- Preventing unauthorized images from instantiating

- Zero-configuration protection using machine-learning to understand a container's behavior and applying least-privilege policies that permit the container to perform only legitimate application activities

- Auditing of container activities such as user access, file access, executables used, network access, and more

- Firewalling of container level network connections

Aqua's runtime support for CRI-O will be generally available in July 2018.

The Latest

May 24, 2018

DEVOPSdigest asked experts from across the IT industry for their opinions on the top tools to support DevSecOps. Part 3 covers security and monitoring ...

May 22, 2018

DEVOPSdigest asked experts from across the IT industry for their opinions on the top tools to support DevSecOps. Part 2 covers DevOps and development ...

May 21, 2018

While DevSecOps, much like DevOps itself, is more about changing IT culture than employing certain types of technology, some tools can be an important support. To find out what the right tools are, DEVOPSdigest asked experts from across the IT industry for their opinions on the top tools to support DevSecOps. Part 1 covers the testing phase ...

May 17, 2018

The top two business priorities for CIOs of midsize enterprises (MSEs) in 2018 are growth and digital transformation. However, 57 per cent of MSEs are not yet delivering digital initiatives, according to findings from Gartner Inc.'s 2018 CIO Agenda Survey ...

May 15, 2018

Almost every company is facing the challenge of digital transformation today. This means rethinking and retooling your company to compete and succeed in an increasingly digital world. While digital transformation is not only about technology, the right tools can help. To find out what these right tools are, APMdigest asked experts from across the IT industry for their opinions on the essential tools to support digital transformation ...

May 08, 2018

With data breaches consistently being in the news over the last several years, it is no wonder why data privacy has become such a hot topic and why the European Union (EU) has put in place General Data Protection Regulation (GDPR) which will become enforceable on May 25, 2018, which is less than a month away ...

May 03, 2018

The prospect of increased workloads, combined with shrinking mainframe skillsets, has huge implications for mainframe DevOps. The only way for organizations to solve this skills gap crisis is by optimizing developer productivity. Drilling down a level further, what does this all mean for mainframe DevOps? ...

May 02, 2018

When it comes to operations and development, DevOps has changed the traditional compartmentalized style of development by eliminating silos. But what about the security team? Security is largely still siloed from operations and development. No doubt, many DevOps teams have some security controls baked into their automation processes, but a recent survey shows there are still alarming gaps ...

April 30, 2018

According to the 2018 Global Security Trends in the Cloud report, 93 percent of respondents faced challenges when deploying their current on-premises security tools in the cloud, and 97 percent lacked the tools, cross-functional collaboration and resources to gain proper insight into security across the organization. These numbers indicate a big problem in DevSecOps that needs to be addressed ...

April 26, 2018

Moving more workloads to the cloud is a top IT priority, so eventually it will be time to consider how to make those critical legacy applications cloud ready. In Part 1 of this blog, I outlined the first four of eight steps to chart your cloud journey. In addition, consider the next four steps below ...

Share this