Early on, containers were flagged as possible security risks, because many containers can share one OS kernel. On the other hand, containers allow for the division of services into microservices—modular pieces that […]
Aporeto is a 1-year-old startup that has taken a surprisingly simple approach to container security. Traditional security systems try to block certain actions from hackers, whereas Aporeto takes the opposite approach, using a […]
The modern trend towards cloud-native apps seems to be set to kill hypervisors with a long slow death. Paradoxically, it is the massive success of hypervisors and infrastructure-as-a-service during the last 15 […]
Standing in the lobby of a well-known technology company yesterday, I was struck by how much the world had changed. This company’s sleek video advertising was touting port density, ease of cabling, […]
Kubernetes supports a new API for network policies that provides a sophisticated model for isolating applications and reducing their attack surface. This feature, which came out of the SIG-Network group, makes it […]
Aporeto advanced an architecture whose purpose is to enable microsegmentation in containerized applications. Its aim is to make it possible to segment distributed applications regardless of network topology.
Container networking is a tough challenge to solve. The evolving needs of creating virtual networks to allow inter-container communications is difficult. But ensuring security at the same time is enough to make […]
Aporeto announced Trireme, an open-source security project for cloud-native applications and initially targets Kubernetes and Docker by bringing security initiatives in line with the speed of cloud-native development on any cloud and […]