NeuVector, a provider of patent-pending behavioral learning solutions for containers, has announced support for NGINX Plus security capabilities into the NeuVector console. NGINX Plus, the enterprise-grade application delivery platform from NGINX, extends open source NGINX software with advanced features for container applications such as load balancing, service discovery, and application resiliency.
NeuVector would adeptly provide the network layer visibility and security needed to oversee east-west container-to-container traffic. This is traffic that routinely crosses hosts and data center boundaries, presenting an ever-increasing concern as microservices deployment growth continues.
Providing support for NGINX Plus would alleviate the issues and conflicts commonly faced when security features from different vendors overlap, instead achieving simple and effective visualization of those container connections that utilize NGINX Plus to encrypt container-to-container sessions.
With NeuVector and NGINX Plus working in tandem, any attempt to bypass an NGINX Plus encrypted tunnel would be instantly detected and addressed by NeuVector. At the same time, NeuVector automatically recognizes and monitors those connections not encrypted by NGINX Plus, protecting against threats or violations to those containers.
The NeuVector solution – a container itself – can be deployed to protect running (or ‘brownfield’) container applications as well, offering a layered security solution with NGINX Plus. Once NeuVector is deployed and the application receives traffic, the NeuVector console displays a visual map of all containers, applications, and network connections involved – including indications of which containers are secured by NGINX Plus-encrypted SSL tunnels. This visualization would offer quick insights into application behavior and the security of each container.
“NGINX Plus provides the enhanced security controls, and monitoring and management capabilities, for delivering microservices at scale,” said Paul Oh, Head of Business Development, NGINX. “NeuVector’s visualization of NGINX Plus security capabilities helps enterprises manage the risks associated with deploying containers in production.”
Founded by industry veterans from Fortinet, VMware, and Trend Micro, NeuVector delivers its Docker container network security solution with a zero-configuration policy that would adapt to the changing environment and secure containers during run-time. NeuVector’s solution would block only suspicious container traffic, while safe traffic continues to the container unaffected. To complete its run-time protection suite, NeuVector also provides real-time threat detection and vulnerability scanning for hosts and containers.
“Continuously defending container applications from active threats requires effective security solutions that have their eyes open,” said Fei Huang, CEO of NeuVector. “Too often, though, implementing security solutions from multiple providers is a reliable recipe for conflicts and IT frustration. We’re proud to provide valuable visualization of the security and encryption that NGINX Plus makes available to enterprises, and to seamlessly complement that security with NeuVector’s own threat detection and prevention capabilities. The result gives businesses a much more complete ability to view oncoming threats and to protect their critical container applications.”