Ermetic has launched new Kubernetes safety posture administration capabilities to its cloud-native software safety platform (CNAPP). Clients can make the most of the automated options to find and repair misconfigurations, compliance violations, and threat or extra privileges in Kubernetes clusters. Ermetic CNAPP offers an in depth stock of the sources inside all Kubernetes clusters, performs steady posture evaluation and prioritization of dangers, and gives remediation steerage, the corporate stated.
The platform queries the Kubernetes API for every cluster, and makes use of agentless scanning and evaluation of node configurations and containers. These findings are then mixed with indicators from the platform’s cloud workload safety (CWP), infrastructure as code (IaC) scanning, cloud safety posture administration (CSPM), and cloud infrastructure entitlement administration (CIEM) performance to supply full visibility into threats, the corporate stated. Clients can get an inventory of prioritized vulnerabilities inside the context of cloud configuration, permissions, and community entry. Clients may implement least privilege for customers and providers utilizing the interior Kubernetes role-based entry controls.
Whereas Kubernetes is highly effective for deploying and managing containerized purposes throughout multiclouds, it will also be difficult for safety groups to successfully monitor configuration adjustments, handle secrets and techniques, guarantee correct role-based entry management, and determine vulnerabilities. “Current approaches to Kubernetes safety usually present a siloed view, which leads to excessive false optimistic charges,” Ermetic’s chief product officer Sivan Krigsman stated in an announcement.