Kubernetes security will have a breakout year in 2022

Hear from the CIO, CTO and other C-level and senior executives on data and AI strategies at the Future of Work Summit on January 12, 2022. Learn more


While it has been a very long time in the last one year, Kubernets security has not yet reached maturity. But from the level of investment in 2021 to the technology to secure Kubernets – the now-dominant container orchestration platform – industries can expect great advances in this area over the coming year.

Originally launched by Google as an open source project in 2014 and now under the domain of the Cloud Native Computing Foundation, Kubernets automates numerous processes involved in the management and deployment of containerized applications. Developers are increasingly gravitating towards the platform, helping to support modern approaches to application development using the Microservices architecture.

Key questions

However, when it comes to securing the Kubernets, a new set of challenges emerges. With Kubernets, “it’s really hard to get code development and application development out of the underlying architecture,” said Frank Dixon, program vice president for security and trust at IDC.

In other words, the best way to protect Kubernets when vulnerabilities are found is to go back and fix the base code. Dixon said the “left shift” – or the concept of moving security at the beginning of the application development process – is a big part of what has become such a topic in the application security space.

He told VentureBeat that the “shift to the left” indicates the fact that Kubernets can now make great strides in terms of security. Understanding companies that securing containerized apps involves bringing security earlier in the app development lifecycle is a crucial step.

“We don’t know all the answers to the problem yet,” Dixon said. “But we are finally beginning to understand the questions.”

Increasing consumption

A survey by the Cloud Native Computing Foundation found that 83% of people were using Cubernets in production in 2020, up from 78% in the previous year and 58% in 2018. But that makes the platform an attractive target for cyber-attackers: a survey by Red Hat in June found that 94% of people had been victims of a Kubernet security incident in the past 12 months.

“When we run everything on Windows Box or Linux Box, we can get into the machine and do whatever we need to do. The containers don’t work that way, said George Burns, senior consultant on cloud operations at SPR. “If we don’t give them safety instructions, they have no one. Kubernets itself is a wonderful tool. But the way it handles some security is not the best.

Thus, in many ways, innovation engines around Kubernets security are just improving.

Burns said that while “very established procedures are followed to secure traditional applications, securing containers is not the same.” “A lot of the innovation that we will see in the next few cycles will be related to container security.”

Draws

At Aqua Security, a vendor that specializes in container security since its inception in 2015, there has been an increase in the adoption of Kubernets security over the past year, as well as “changes in the scale of projects being deployed at Kubernets,” the CEO said. Dror Davidoff.

The company Kubernets is one of the securities spaces that raised major rounds of funding in 2021, with its $ 135 million Series E rounds valued at 1 billion in March.

Others include Snyk, who raised $ 530 million Series F rounds in September at a valuation of .5 8.5 billion; Wiz, which raised $ 250 million in Series C rounds in October on a 6 billion valuation; Orca Securities, which extended its Series C round to $ 550 million in October with a valuation of $ 1.8 billion; Leswork, which raised 1.3 billion at a valuation of $ 8.3 billion in November; And Sysdig, which raised the G 350 million Series G round to 2.5 billion in December.

Pushing innovation

Among the early-stage companies operating in the Kubernetes security space is Armo, which has seen over 20,000 downloads for its open-source tool Kubescape. The tool enables developers to instantly scan Kubernets environments for incorrect configurations and vulnerabilities. Armo stealth came out in January with બીજ 4.5 million in seed funding.

At Cubernets Security, “we have a number of companies that are coming up with new and innovative technologies,” Dixon said. “So we’re not just doing what we once did. We’re just starting to use some really cool new approaches. “

Companies like Orca Security and Wiz are taking advantage of block storage in the cloud to be able to take snapshots of the Cubernets cluster and then analyze it without the need for an agent, he said. Other examples include a Linux technology called eBPF, which enables the Linux kernel to become more programmable, increasing security for the Kubernets environment, he said.

“What we’re starting to see is new technologies being applied to secure Kubernets,” Dixon said.

Meanwhile, publicly traded security companies, including Checkpoint, Palo Alto Networks and Qualis, told VentureBeat that they were doubling Kubernets security capabilities in 2021. In June, for example, Checkpoint announced the expansion of its Cloudguard workload protection. Capabilities including container security platform, capabilities including “shift-left” tools to secure containers and pre-deployment serverless functions.

A great opportunity

Despite the new challenges with securing Kubernets, the deployment of the container has potential security benefits due to its “code-based” approach, said Sumedh Thackeray, CEO of Qualis. It gives companies “opportunities to protect better than traditional environments” through infrastructure such as code (IaC) scanning, Thackeray said.

“It’s really an exciting part of the cloud and the container – that we have the opportunity to reduce our risk earlier and sooner in a ‘shift left’ environment,” he said.

Dixon said the bottom line with Coburnetis protection is that “we don’t have to be mature. You can say we’re in our teens.”

“As these new technologies are coming into our Kubernets security solutions, we need to find out what they are, and then we need to integrate them into our application development processes,” he said. “And so it will take some time to understand how we integrate them all into a workflow that does not slow down application development.”

Venturebeat

VentureBeat’s mission is to become a digital town square for technical decision makers to gain knowledge about transformative technology and practices. Our site delivers essential information on data technologies and strategies so you can lead your organizations. We invite you to access, to become a member of our community:

  • Up-to-date information on topics of interest to you
  • Our newsletters
  • Gated idea-leader content and discounted access to our precious events, such as Transform 2021: Learn more
  • Networking features and more

Become a member

Similar Posts

Leave a Reply

Your email address will not be published.