NeuVector, a provider of Kubernetes security delivering a multi-vector container firewall, has announced that its run-time container security solution is now available for IBM Cloud. NeuVector’s solution integrates with IBM Cloud Container Service and would provide IBM Cloud customers with “the confidence” to deploy Kubernetes workloads in production.
“DevOps and containers are an increasingly important strategy for enterprises to more easily develop and release software,” said Fei Huang, CEO of NeuVector. “IBM Cloud combines Docker and Kubernetes to provide powerful tools and services – including cognitive capabilities from IBM Watson – into a platform that promotes rapid application delivery. Our partnership with IBM Cloud now automates Kubernetes platform security with NeuVector’s multi-vector container firewall capabilities to ensure production applications are secure.”
The deployment automation enabled by Kubernetes would also come with security challenges caused by low visibility into the constantly changing east-west communication traffic within the Kubernetes environment. Traditional security solutions would not be able to detect threats and container attacks across several fronts, from vulnerability exploits to privilege escalation to sophisticated insider attacks. Image scanning and hardening would be equally insufficient to protect these environments in run-time, as unknown vulnerabilities, zero-day and insider attacks can evade their protections.
“Our customers are on a journey to the cloud – whether it’s cloud-native app development or the modernization of existing apps by repackaging to run in the cloud,” said Chris Rosen, Program Director, Offering Management, IBM Cloud. “As their usage of containers and microservices increases, it becomes apparent quickly that traditional solutions and tooling for monitoring, logging, and (especially) security are not sufficient for these new technologies. IBM is excited about the partnership with NeuVector and our ability to bring run-time visibility and security for Kubernetes and Docker to IBM Cloud Container Service. IBM is providing a managed Kubernetes container offering that enables our customers to focus on their business objectives, not managing open source projects like Docker and Kubernetes. NeuVector deploys seamlessly in our native Kubernetes clusters providing container behavioral learning and cloud-native integration to automate security enforcement for our customers.”
Layer 7 Container Firewall
NeuVector would provide a “unique” run-time security automation solution to fully secure Kubernetes environments. The solution delivers a “true” Layer 7 container firewall with east-west traffic visibility combined with container process monitoring and vulnerability scanning.
Founded by industry veterans from Fortinet, VMware, and Trend Micro, NeuVector has developed patent-pending behavioral learning for container security. Its multi-vector container firewall would enable the confident deployment of enterprise-wide container strategies across multi-cloud and on-premises environments. NeuVector’s customers include global leaders in financial services, healthcare and publishing, and the company is partners with AWS, Docker, IBM, Rancher, Red Hat, and others.