Kubescape, Armo’s Kubernetes Security Platform, Becomes a CNCF’s Sandbox

Highlights:

• Armo Ltd. has announced that its open-source security software platform Kubescape has been accepted as the Cloud Native Computing Foundation’s next sandbox project.
• Kubescape, the first open-source Kubernetes security platform, examines configuration files like YAML and Helm, clusters, and worker nodes for misconfigurations and known vulnerabilities from MITRE ATT and amp;CK and other databases.

Armo Ltd., the cybersecurity startup, has announced that the Cloud Native Computing Foundation has selected its open-source security software platform Kubescape as its latest sandbox project.

The Armo Platform, an enterprise-grade version of Kubescape with premium capabilities not accessible in the open-source version, was also officially launched by the business.

The CNCF’s support is a significant endorsement of the Kubescape platform, which protects Kubernetes settings against various cyber threats. Kubernetes is an open-source container orchestration platform used to handle contemporary application components. Armo asserts that the program is in dire need of a security upgrade because businesses frequently employ it.

Kubescape is the first open-source security platform for Kubernetes environments, which scans configuration files like YAML and Helm, clusters, and worker nodes, for misconfigurations and known vulnerabilities mentioned in the MITRE ATT and amp;CK and other databases.

After scanning a Kubernetes system, Kubescape computes a risk score and offers users recommendations for necessary changes. In addition, the platform includes a module for managing role-based access controls that visualizes the relationship between roles and privileges in various Kubernetes cluster components. It demonstrates how these connections may fail and create security flaws and shows how to fix them.

Armo believes that the open-source nature of Kubescape is its greatest advantage. This is significant, as the most common Kubernetes security technologies in use today are pricey, proprietary, closed-source systems.

The CNCF is now in charge of Kubescape’s development and will manage the project in the future. Armo asserts that it will continue to serve as Kubescape’s primary developer.

Craig Box, Armo Vice President of Open Source said, “Armo is a company committed to open source and dedicated to Kubernetes. Bringing Kubescape to the CNCF was an obvious choice. Kubescape helps thousands of users secure their Kubernetes clusters and CI/CD pipelines. As the first security scanner to become a CNCF project, we will strive to support and integrate with other CNCF projects and look forward to building a wide contributor community.”

Armo is devoted to open source, but it also has to generate money; therefore, it has announced the debut of its Armo Platform, which adds enterprise-grade support and maintenance and extra capabilities to Kubescape. The most notable distinction between the two products is that the Armo Platform has a more robust user interface and DevSecOps dashboard.

Additionally, it provides pre-integrations with third-party DevOps tools and collaboration platforms such as Jira and Slack. Armo Platform can be deployed more simply on any Kubernetes platform, including cloud variations such as Amazon Web Services Inc.’s Elastic Kubernetes Service, Google Cloud’s Kubernetes Engine, Microsoft Corp.’s Azure Kubernetes Service, and Red Hat Inc.’s OpenShift platform.

The business believes clients are eager to pay for these additional capabilities, claiming over 6,000 Armo Platform beta users.

Shauli Rozen, co-founder and Chief Executive, said, “Armo remains dedicated to making Kubescape the best open source Kubernetes security platform, and Armo Platform the best enterprise version for Kubescape.”