Wallarm Enables Fastest Microservices Environments with Kubernetes-Native Security

Share Article

Wallarm launches the first-on-the market native support of Envoy-powered APIs security; protects ServiceMesh / Istio. See a live demo at KubeCon, Booth SE48

Envoy security with Wallarm

Envoy-native security diagram

“Envoy is a foundation of light-weight, high-performance microservices APIs for both inbound and inter-services connectivity. Wallarm is the only security solution that works as fast as Envoy itself and integrates directly into the Envoy

Wallarm, the company that delivers AI-powered app and API protection, today announced the general availability of the Wallarm Envoy API support for Ingress and Service Mesh.

Wallarm is committed to supporting the newest cloud tech to help customers stay ahead of the curve. Having introduced native Kubernetes security support in 2018, we want to stay ahead of the Envoy / Istio trend and enable our customer, who pioneered the user of Service Mesh, with security both North-South and East-West APIs in production.

“Envoy is rapidly winning the hearts and minds of the community by being a foundation of light-weight, high-performance microservices APIs for both inbound and inter-services connectivity. Wallarm is the only security solution that works as fast as Envoy itself and integrates directly into the Envoy”, said Stepan Ilyin, Wallarm Chief Product Officer.

What is Envoy?
Envoy is a high-performance distributed routing framework and a “universal data plane” designed for microservices and service mesh architectures. It was originally built C++ by a Lyft engineering team with an extremely low performance overhead and can also be used as a distributed proxy for single service applications. Currently, Envoy is a part of CNCF family and is supported by the foundation
Envoy is a great example of the third generation routing infrastructure learning from the challenges of first-generation technology, like F5 application delivery network (ADN), and second-generation solutions such as NGINX and HAProxy.
Envoy’s main advantage is the ability to provide networking features to each service in a platform-independent manner. By abstracting the network and centralizing routing controls, Envoy enables better observability, performance, and ability to find bottlenecks.

Key Innovation in Wallarm for Envoy

  • Installs directly onto the Envoy infrastructure
  • Protects Service Mesh, including Istio
  • Protects North-South and East-West APIs
  • Extremely low overhead
  • Broad API protocol detection, including gRPC
  • Low false positives

Resources:

About Wallarm
Wallarm is an AI startup focused on the security of apps, APIs, and microservices running on public and private clouds. Wallarm platform aligns security and development into a unified pipeline. Security and DevOps teams choose Wallarm FAST to automate security testing within CI/CD pipeline, gain visibility into hacking attempts, detect and remediate OWASP Top10.

Wallarm Advanced Cloud-Native WAF uses machine learning to deliver high-accuracy OWASP Top 10 and behavioral API protection. The technology provides dynamic, active, and focused security for hundreds of enterprises and SaaS companies. Founded in 2013, Wallarm is headquartered in San Francisco, California and is backed by Toba Capital, Y Сombinator, Partech, Runa Capital, and other investors.

Share article on social media or email:

View article via:

Pdf Print

Contact Author

Wallarm
@wallarm
Follow >
Visit website