Continuous Integration (CI) “This technique continuously merges source code updates into one mainline to prevent merge conflicts by integrating code from different developers as soon as it’s available. It creates a real-time window into the current state of the software system and quality measurements, enabling constant engagement of all DevOps team members. For security teams, CI […]
Aqua Security provides customers with a solution for securing containerized applications from build to runtime on VMware Enterprise PKS and Pivotal PKS August 27, 2019 — Aqua Security, the leading platform provider for securing container-based, serverless, and cloud native applications, today announced that the company’s flagship platform, Aqua CSP, is available on VMware Cloud Marketplace™. […]
The process for creating a Secret is also relatively simple. Korren from Aqua Security describes it thusly, and following along can also help illuminate the purpose and benefits: “The process is that a trusted person or source defines a Secret by creating a logical name and entering the sensitive data,” Korren explains. “From then on, […]
“Software that’s as complex and as extensive as Kubernetes is bound to have vulnerabilities,” wrote Rani Osnat, Vice President of Product Marketing at Aqua Security, in an email to SDxCentral. “Taking the initiative to perform an extensive third-party security audit … is absolutely the right thing to do in order to get ahead of having […]
The multi-cloud approach is also shifting from ad hoc to intentional in more companies. Amir Jerbi, CTO and cofounder at Aqua Security, summed this up well for us recently: “Multi-cloud has become a strategic initiative for many enterprises, large and small.”
“Another critical aspect [of multi-cloud security] is that multi-cloud means that an organization will want to be able to move workloads between clouds, and when that happens, not be required to reconfigure the entire security toolset,” says Amir Jerbi, co-founder and CTO at Aqua Security. “One factor to consider is that cloud-provider-specific settings should be made […]
Rani Osnat, vice president of product marketing at Aqua Security, previously told SDxCentral that Kubernetes is a “complex system and it’s bound to have vulnerabilities. The fact that CVE disclosures are becoming more commonplace is a good thing, as is the fact that they’re not all severe.”
Since Cloud Foundry uses the Diego system to manage app containers, Aqua now also automatically scans Diego hosts (so-called cells) for known vulnerabilities, and exposure of sensitive data. On top of that, the service tests for cell compliance against the CIS Linux Benchmark. More details can be found on the Aqua Security blog.