UPDATED 07:00 EDT / APRIL 12 2018

APPS

NeuVector debuts incident response system for Kubernetes software deployments

With software containers growing increasingly popular in enterprise information technology deployments, securing them has taken on a much higher priority. With that in mind, Kubernetes security specialist NeuVector Inc. today is updating its container firewall with new capabilities, including an incident response system and other process and file system protections.

NeuVector offers a security platform for companies that use Kubernetes to manage their container deployments. Kubernetes is an open-source container orchestrator that has become the de facto software for managing such deployments. The containers themselves are a way to package software applications so they can run inside any IT environment and on any hardware.

NeuVector, which emerged from stealth mode about a year ago, provides a three-pronged solution to securing containers. First, its firewall can detect abnormal connections within the network. Second, it provides runtime vulnerability scanning to spot threats as they appear. Third, it comes with threat protection capabilities that can shut down any compromised software container as soon as it’s spotted.

The company’s container firewall system is also deployed in a container, which means it’s very easy to implement. NeuVector’s container is deployed in the same IT environment as those containers running apps, so it can keep an eye on that environment for any abnormal behavior. The system defends environments by automatically creating segmentation for isolation at the container, application and service level. It also comes with features such as the ability to add blacklist rules.

With today’s update, NeuVector 2.0 adds new auto-response rules to its system that can address common container attacks and security alerts and provide an instantaneous response whenever they crop up.

Some of the responses include being able to quarantine compromised containers, generate custom notifications and whitelist non-critical events. These responses can also be customized for certain criteria such as specific vulnerabilities or activity in the file system, network or with ongoing processes, the company said.

Building on these capabilities, the new version also comes with automated protections that can detect exploits such as suspicious processes or file system activities. This feature works by quickly calculating a baseline of normal processes as soon as a container is fired up and whitelisting normal activity. Should any deviation to this baseline activity occur, the system will immediately scan the container and alert operators to any suspicious activity it finds.

“The highly dynamic nature of Kubernetes environments makes robust and responsive threat automation a critical requirement to enterprise security,” said Fei Huang, NeuVector’s chief executive officer.

NeuVector will demonstrate version 2.0 of its platform at the RSA Conference 2018 taking place in San Francisco April 16-20.

Image: typographyimages/Pixabay

A message from John Furrier, co-founder of SiliconANGLE:

Your vote of support is important to us and it helps us keep the content FREE.

One click below supports our mission to provide free, deep, and relevant content.  

Join our community on YouTube

Join the community that includes more than 15,000 #CubeAlumni experts, including Amazon.com CEO Andy Jassy, Dell Technologies founder and CEO Michael Dell, Intel CEO Pat Gelsinger, and many more luminaries and experts.

“TheCUBE is an important partner to the industry. You guys really are a part of our events and we really appreciate you coming and I know people appreciate the content you create as well” – Andy Jassy

THANK YOU