StackRox Container Security Platform expands its scope to the orchestration level

Containerized and cloud-native application security company StackRox announced the latest release of its Container Security Platform today. The updated platform aims to provide an all-in-one solution for securing containers through runtime threat detection as well as actionable feedback at every stage of the container lifecycle.

“The StackRox Container Security Platform’s integrated approach streamlines decision making and fosters collaboration between security and DevOps,” Wei Lien Dang, vice president of product at StackRox, said in the announcement. “Because our platform has a feedback loop that ties together capabilities across different phases of the container life cycle – as opposed to providing functionality on a standalone basis – it provides customers with an unmatched level of security against emerging container-based threats. It eliminates entire workflows that security operators would typically have to go through.”

With the new release, the company says it has taken steps to address concerns around vulnerable container orchestration systems, of which 21,000 vulnerable systems were found by a Laceworks security survey last month. This includes the extension of the platform’s policy management to cover attack surfaces introduced at the orchestration level.

“Specific to orchestrator-based threats, the platform evaluates configurations of security capabilities native to the orchestrator itself, such as role-based access controls, network policies and secrets in Kubernetes,” the company wrote in the announcement. “If an attacker uses tools to conduct reconnaissance and scanning within the container environment or exploits orchestrator misconfigurations, the StackRox container security platform will detect that activity.”

StackRox explained managing the new integrations requires only a few clicks in order to keep up with evolving security needs and pure volume of data being generated in containerized environments.

“Recently several examples of orchestrator-related attacks have been published, including a compromise of Tesla’s Kubernetes infrastructure that allowed attackers to mine cryptocurrency and a report that detailed how an attacker could have compromised Shopify’s Kubernetes clusters,” the company wrote. “The new StackRox release protects against these types of threats by default.”

The new version of StackRox Container Security Platform is expected to be generally available this month.