DEVOPSdigest

Polyverse Corporation announced that its Moving Target Defense Suite is available for Docker and Kubernetes with a simple download.

Container environments demand a new, fast and scalable approach to defense in depth. Moving Target Defense creates a dynamic, agile environment that reduces the window of opportunity for hackers to craft targeted attacks.

Built with a Unix-like philosophy of distinct, composable tools that provide specific protection against classes of attacks, the Polyverse Moving Target Defense Suite features three interdependent components, each of which is aimed at creating highly protective dynamism and diversity in systems.

- Polyverse Binary Scrambler — sophisticated cyberattacks rely on detailed knowledge of the target binaries. Polyverse’s scrambling compiler technology produces semantically equivalent, high-entropy binaries that are unique on every compile — all while maintaining exact semantic and performance equivalence. The entropy however, foils crafted malware because data, registers and code are all different than what the malware was expecting.

- Polyverse has incorporated this tool into open-source repositories for CentOS, Ubuntu, and Alpine, providing protection for thousands of Linux-based open-source projects, from Java to Apache to Ruby on Rails. Every installation from Polyverse’s repository creates an intrinsically cyber-resilient, unique binary that is 100% compatible with the standard distribution binary. Since every install is unique and diverse, attackers have no knowledge of those binaries, rendering their zero-day crafted viruses useless.

- Polyverse Container Cycler — automatically removes advanced persistent threats and other malware by continuously resetting stateless containers back to pristine condition every five seconds. Container cycling is completely transparent to both users and the rest of the application.

- Polyverse Microservices Firewall — protects each individual microservice rather than separating apps into tiers and securing only the tier borders. Lightweight and easy to configure, it is deployed on the application host and immediately protects the host against script attacks, probing and undocumented API calls.

“Applications today are largely assembled from existing, potentially vulnerable open-source components and frameworks. This makes them lucrative targets for hackers, who simply have to break in once to compromise many applications,” said Polyverse CEO Alex Gounares. “More than 30% of Fortune 1,000 companies are deploying key applications in container environments, and it is critical that the best in security innovation is available for these environments. It is also essential that these technologies are agile and easy to use and deploy for DevOps. With the Polyverse solution, just one line of code provides Moving Target Defense for container environments, ensuring a level of diversity that makes them nearly impenetrable.”

Designed from the ground up for container environments, Polyverse is easy to install, extremely flexible, provides almost zero latency and operates at extremely high scale. The suite installs with just one line of code to provide server-side protection against zero-day exploits and advanced persistent threats.