DEVOPSdigest asked experts from across the IT industry for their opinions on the top tools to support DevSecOps. Part 2 covers DevOps and development ...
NeuVector announced an expansion to its support for Red Hat OpenShift Container Platform by adding availability for role-based access controls (RBACs).
The new capability can instantly enable developers, architects, DevOps personnel, and security teams to achieve more complete security visibility and management for Red Hat OpenShift-deployed containers. Enterprises can now deploy Red Hat OpenShift Container Platform with added confidence knowing that the same access controls created for Red Hat OpenShift Container Platform can also be applied to the management of the NeuVector multi-vector firewall. NeuVector is among the first Red Hat Certified firewall containers available for Red Hat OpenShift Container Platform and it is listed in the Red Hat Container Catalog.
NeuVector provides a highly integrated and automated security solution for safeguarding Kubernetes environments against container threats, violations, and vulnerabilities throughout the entire application lifecycle — including protections against sophisticated insider attacks. Proper controls for limiting access to Red Hat OpenShift and NeuVector resources are a critical requirement for preventing insiders with bad intentions from executing unauthorized operations. With this extension of its capabilities for Red Hat OpenShift, NeuVector now fully utilizes Red Hat OpenShift RBACs to help defend container tools from insider threats.
Additionally, the NeuVector capabilities now enable Red Hat Container Registry images to be easily scanned for vulnerabilities using NeuVector's container security solution. With this new capability, enterprises can have automated image scanning integrated into their CI/CD processes from day one.
NeuVector is also making a Jenkins plugin available that introduces automated scanning in the image build process. Customers using Jenkins in their integration and build processes can set policies for allowing or failing builds based on whether vulnerabilities are detected in the images. The automated registry and image build-time scanning is designed to ensure that known vulnerabilities are not introduced into the application development and deployment lifecycle. The NeuVector multi-vector container firewall is designed to further protect Red Hat OpenShift containers during run-time, guarding against zero-day attacks and even exploits of yet unknown vulnerabilities.