Portshift Enhances Cloud-Native Application Security Platform with Advanced Policy Advisor

Share Article

New Capability Strengthens Containerized Microservice Security by Defining and Enforcing Preferred Rule Sets for DevOps Professionals Managing Kubernetes.

News Image

Portshift, a leader in identity based workload protection for cloud-native applications, today announced its new Policy Advisor control interface, providing DevOps professionals with the ability to establish and automate policies for container-based microservices delivered in the cloud. Now a part of the Portshift Cloud Workload Protection Platform, Policy Advisor analyzes the actual network traffic and conditions throughout Kubernetes cluster environments and suggests connection rules in order to deliver the most operationally efficient and secure traffic model. As a result, the organization enjoys microservice operations that are automated, performant and secure.

Portshift is a provider of identity-based cloud native workload security and risk management that ensures only administrator approved applications are running in authorized cloud environments, and that unknown, possibly malicious workloads are detected and removed. It represents a change from traditional workload management (using IP addresses, ports and firewalls to secure the network perimeter) because it addresses the unique security requirements of cloud-native microservices running in serverless containers both inside and outside the network perimeter.

With the availability of Portshift’s Policy Advisor, administrators are now capable of setting and centralizing the management of operational policies in order to prevent conflicts and strengthen the overall security profile for modern applications orchestrated with Kubernetes. As a result, administrators can be confident that their container-based workload runtimes will be reliably consistent and configured to maximize productivity.

With the Policy Advisor, users can create rules based on suggestions provided by the system’s knowledgebase or create custom rules to satisfy runtime requirements. To do this, the administrator will select a suggested rule from the policies page which will show the source, destination, traffic details and pending actions. Before executing the rule, the Policy Advisor will then specify the number of connections that could be affected by the rule to prevent unintended actions. Upon execution, the new rule will appear in the connection policy window, where the administrator has the option of saving, modifying or deleting the new rule.

Earlier this year, Gartner named container security among its Top 10 Security Projects for 2019. According to the research and advisory firm, “Developers are increasingly using Linux containers to push digital business capabilities through the development pipeline more quickly, but each of these containers must be screened for vulnerabilities and issues before being put into production. Container security must integrate with common developer tools and the CI/CD pipeline and be used with comprehensive APIs to support a variety of security tools.”

“The Policy Advisor not only ensures proper functionality and authorization of applications in these distributed workload environments, it also allows the proper structuring and fine-tuning of performance by monitoring network traffic and available computing resources,” said Zohar Kaufman, VP of Research & Development, Co-Founder and Board Member, Portshift. “As a result, this will provide mission critical functionality for DevOps experts managing the next generation of container-based applications.”

Tweet this: @Portshift Enhances Cloud-Native Application Security Platform with Advanced Policy Advisor - https://www.portshift.io/portshift-launches-advanced-policy-advisor/

Resources
To learn more about Portshift:

About Portshift
Portshift is an identity-based cloud workload protection platform that secures applications from CI/CD to runtime. Portshift enables organizations to know which applications are running on their cloud environments, to see and enforce how the applications communicate and to easily find information that is associated with their development and deployment cycles enabling DevOps teams to orchestrate security as part of their day-to-day job. Portshift's unique model introduces a security framework that is decoupled from network and operations, allowing for accelerated software delivery at any scale. Portshift was spun out of think tank and company-builder Team8. Go to https://www.portshift.io/ for more info.

-END-

Share article on social media or email:

View article via:

Pdf Print

Contact Author

Yifat Mor
Portshift.io
+972 546722465
Email >
Visit website