Story image

NeuVector adds additional features to Kubernetes security platform

04 Dec 2018

Container network security firm NeuVector is adding a new security integration that integrates with Kubernetes, extending Admission Control features and preventing the leak of vulnerabilities into production environments.

NeuVector, which also offers next-generation container firewall, says the additions will stop vulnerable images from deploying into Kubernetes production environments.

“As Kubernetes matures, enterprises are increasingly turning to the container orchestration solution for use across the full application development process – including in-production environments,” the company explains. 

“This proliferation is in turn necessitating security measures capable of safeguarding container environments throughout the entire breadth of the build-ship-run lifecycle.”

NeuVector’s security platform is also a container. It scans and discovers the vulnerable images before they are deployed. It also ensures that images are not altered or tampered with before deployment.

The platform maintains an active catalogue of images approved for deployment in production, and verifies images signatures as part of its security process. 

Synopsys is one of NeuVector’s partners. Synopsys senior technical evangelist Tim Mackey explains further:

"Considering the dynamic, ever-changing nature of modern containerized applications, and that in 2018 an average of 47 vulnerabilities are disclosed each day, a continuous approach to preventing vulnerable images from being deployed into production systems is critical.

“By integrating Black Duck OpsSight, our open source vulnerability detection solution for containers, with NeuVector Admission Control and run-time security, our customers are able to deploy Kubernetes with end-to-end security across their full container pipeline.”

NeuVector’s Admission Control release also ensures that only authorised users and service accounts are capable of deploying containers into production.

“With enterprises more commonly utilising containerised production environments, we’re proud to introduce Admission Control capabilities that enhance Kubernetes’ built-in features to ensure those environments are protected from tampering and free of known vulnerabilities,” comments NeuVector CTO Gary Duan.

“We’re excited to be introducing these features at DockerCon, and to demonstrate to attendees how our platform ensures the integrity of container images and provides container security across the full build-ship-run lifecycle.”

NeuVector is headquartered in California, United States and works with some of the world’s biggest firms like Docker, IBM, AWS, Google Cloud, Microsoft Azure, and others.

In November 2017, the company raised US$7 million in Series A funding, just 10 months after its launch into the market.

NeuVector was formed by security experts from the likes of Trend Micro, VMware, and Fortinet.

Seagate: Data trends, opportunities, and challenges at the edge
The development of edge technology and the rise of big data have brought many opportunities for data infrastructure companies to the fore.
Popular Android apps track users and violate Google's policies
Google has reportedly taken action against some of the violators.
How blockchain could help stop video piracy in its tracks
An Australian video tech firm has successfully tested a blockchain trial that could end up being a welcome relief for video creators and the fight against video piracy.
IBM X-Force Red & Qualys introduce automated patching
IBM X-Force Red and Qualys are declaring a war on unpatched systems, and they believe automation is the answer.
Micro Focus acquires Interset to improve predictive analytics
Interset utilises user and entity behavioural analytics (UEBA) and machine learning to give security professionals what they need to execute threat detection analysis.
Raising the stakes: McAfee’s predictions for cybersecurity
Security teams and solutions will have to contend with synergistic threats, increasingly backed by artificial intelligence to avoid detection.
Exclusive: Ping Identity on security risk mitigation
“Effective security controls are measured and defined by the direct mitigation of inherent and residual risk.”
CylancePROTECT now available on AWS Marketplace
Customers now have access to CylancePROTECT for AI-driven protection across all Windows, Mac, and Linux (including Amazon Linux) instances.