TMCnet News

Aporeto Announces Zero Trust Cloud Security Solution for Kubernetes Multi-Cluster and Multi-Cloud Deployments at Scale
[August 07, 2019]

Aporeto Announces Zero Trust Cloud Security Solution for Kubernetes Multi-Cluster and Multi-Cloud Deployments at Scale


Aporeto, the leader in Zero Trust Cloud Security, today announced its cloud network security solution for seamless distributed policy management across Kubernetes multi-cluster and container environments, using a unique application identity-based approach to security instead of relying on IP addresses. Aporeto's use of identity enables network security policies to now be managed up the stack at the application level.

Unlike any other Kubernetes security solutions in the marketplace that cannot extend across clusters and IP domains, Aporeto (News - Alert) offers a turn-key enterprise SaaS solution that works well for multi-cluster Kubernetes deployments across multiple geographies at scale. All that is required for the user is to deploy an Aporeto enforcer on k8 nodes or VMs. The Aporeto solution protects the whole node and not just the PODs in a Kubernetes cluster.

The Aporeto solution for Kubernetes multi-cluster deployments is now available for demo or for a FREE Trial. The company will also demonstrate its solution at Black Hat in Las Vegas, August 7 - 8, 2019. With Aporeto, security is implemented at layers L3-L7 wih end-to-end authentication, authorization and optional encryption for a Zero Trust security posture. The layer of enforcement is a user choice, and it allows users to balance between performance overheads and security requirements. Aporeto assigns a cryptographically signed and attested service identity to every Kubernetes POD. Security policies remain portable and persistent no matter where the POD resides.



"Aporeto has given us an answer to having a consistent approach for securing workloads in our Kubernetes environment, our legacy network zones and across our public cloud services. It relieves us from further burdening an overly complex network, and puts the most powerful security tools into the application teams' hands," said Todd Wilson, product director, Enterprise DevOps, BC Developers' Exchange.

"Aporeto helps our customers to centralize the visibility, management and enforcement of their network security needs across on-prem and cloud based Kubernetes workloads using application identity rather than IP addresses," said Shea Stewart, partner, Arctiq. "The approach towards uniquely identifying each application with more granularity than a simple network address is absolutely required in the world of software defined networks (SDN) and ephemeral cloud workloads. Aporeto provides a solution that can easily enforces the Zero Trust security framework for our customers, while also providing a fully programmable API that integrates with existing DevOps release processes."


"Helping customers tackle complex cloud security challenges, while reducing operational complexity, strengthening overall security posture and addressing scalability issues is job one at Aporeto," said Jason Schmitt, CEO of Aporeto. "With our identity-based Zero Trust cloud security solution, we not only solve distributed policy enforcement across Kubernetes single and multi-cluster environments, but provide persistent policy management for heterogeneous infrastructure and workloads."

Aporeto works seamlessly with other Kubernetes technologies, including all existing and cloud-native container network interface (CNI) architectures and service mesh products such as Istio. Aporeto can automatically import and apply Kubernetes network policy definitions to provide DevOps with a familiar YAML interface and backward compatibility for declaring allowed network connections, eliminating stacks of unnecessary YAML files and accelerating application deployment. Additionally, Aporeto supports all formats of Kubernetes including managed offerings such as AWS EKS, Google (News - Alert) GKE, Microsoft Azure AKS, IBM Cloud Kubernetes, as well as private installations such as Red Hat OpenShift, kubeadm and Heptio. To learn more about the Aporeto solution for Kubernetes multi-cluster deployment, hear from their customer E-xact Transactions or view the following Aporeto in Action Webinar or Zero Trust Security for Microservices, Containers and Cloud Webinar.

About Aporeto

Aporeto, the leader in Zero Trust Cloud Security, provides comprehensive network security through microsegmentation and secure access to applications and infrastructure using application identity rather than IP addresses. The Aporeto SaaS (News - Alert)-based platform allows you to build and enforce distributed identity-based policies enabling authentication, authorization, and encryption across all workloads including containers, Kubernetes, serverless, service mesh and VM environments. Aporeto protects against attacks and enables complete visualization, simplified proof of compliance, centralized management, and accelerated app migration. Aporeto future proofs your infrastructure, delivering stronger cloud security, operational agility to accelerate digital transformation, and better ROI for any infrastructure at any scale. Learn more at www.aporeto.com.


[ Back To TMCnet.com's Homepage ]