Tigera

tigera logo
2016
San Francisco, CA, USA
https://www.tigera.io/
Twitter
Facebook
LinkedIn
Instagram
Youtube
GitHub

Kubernetes is being adopted by every major enterprise on the planet for deploying modern, containerized applications. However, containers are highly dynamic and break their existing security models. Tigera provides zero-trust network security and continuous compliance for Kubernetes platforms that enables enterprises to meet their security and compliance requirements.

Tigera’s technology is recognized and trusted as the de facto standard for Kubernetes network security. Our open source software, Tigera Calico, provides production-grade security, and our commercial offerings layer on advanced security capabilities, enterprise controls, and compliance reporting.

Kubernetes Requires a Modern Approach to Security and Compliance:

  • Zero-Trust Network Security: With 40% or more of all breaches originating from within the network, you must always have to assume that something has been compromised. Applications running on Kubernetes make heavy use of the network for service to service communication. However, most clusters have been left wide open and are vulnerable to attack. A zero trust approach is the most secure way to lock down your Kubernetes platform.
  • Continuous Compliance: Kubernetes is dynamic and constantly changing. Moments after a compliance audit is completed the environment will have changed again. A continuous compliance solution is the only way to prove that your security controls have been implemented properly now and historically.
  • Visibility and Traceability: Applications running on Kubernetes Platforms have constantly changing IP addresses and locations that makes it impossible to use traditional flow logs to debug issues and investigate anomalous activity. The only accurate approach is to use Kubernetes labels and workload identity in your netflow logs.
  • Multi-cloud and Legacy: Many applications running on Kubernetes will not be greenfield. Applications often need to communicate securely with other systems outside of the cluster, such as on-premises or cloud-based VMs, bare metal servers and databases. To achieve zero trust security for Kubernetes, your security policies must be capable of expanding beyond the cluster.

Zero Trust Network Security and Continuous Compliance for Kubernetes Platforms.

Read Profile

tigera
Supercharging Workload Security in Your K8s Cluster
Feb 12, 2020   |  By Vaibhav Thakur
2019 was a big year for Kubernetes adoption, and 2020 is sure to exceed that pace. Already, we have seen a large number of organizations migrating their workloads to Kubernetes (k8s) both in public and private clouds as they embrace a hybrid cloud strategy. With so much at stake, what are you currently using for network security inside your k8s cluster?
tigera
Decentralized Calico Network Security Policy Deployment for GitOps - Part 2
Jan 7, 2020   |  By Bikram Gupta
In part 1 of the GitOps blog series, we discussed the value of using GitOps for Calico policies, and how to roll out such a framework. In this second part of the series, we will expand the scope to include decentralized deployment and GitOps.
tigera
Enforcing Network Security Policies with GitOps - Part 1
Dec 19, 2019   |  By Bikram Gupta
“How do I enable GitOps for my network security policies?” This is a common question we hear from security teams. Getting started with Kubernetes is relatively simple, but moving production workloads to Kubernetes requires alignment from all stakeholders – developers, platform engineering, network engineering, and security. Most security teams already have a high-level security blueprint for their data centers.
tigera
Five Ways to Quickly Uncover Malicious Activity and Protect Your Kubernetes Workloads
Dec 12, 2019   |  By Manoj Ahuje
Organizations are rapidly moving more and more mission-critical applications to Kubernetes (K8s) and the cloud to reduce costs, achieve faster deployment times, and improve operational efficiencies, but are struggling to achieve a strong security posture because of their inability to apply conventional security practices in the cloud environment. Commitment to cloud security grows, but security safeguards are not keeping up with the increased use of the various cloud platforms.
tigera
Security Policy as Code Now Fully Automated with Calico Enterprise 2.6
Nov 18, 2019   |  By Andy Wright
We are excited to announce the general availability of Calico Enterprise 2.6 (formerly known as Tigera Secure). With this release, it is now possible to fully-automate Security-Policy-as-Code within a CI-CD pipeline, including the ability to implement security as a Canary rollout, which is the most critical requirement to automating network security.
More
tigera logo
Achieving network security and compliance for Kubernetes on AWS
Feb 26, 2019   |  By Tigera
Discover how Tigera can help you achieve a scalable, secure, and compliant approach to containers on AWS.
tigera logo
Five Best Practices for Kubernetes Network Security and Compliance
Feb 26, 2019   |  By Tigera
This whitepaper explains five best practices to help meet network security and compliance requirements for modern microservices stack.
tigera logo
Guide to Implementing Network Security with Kubernetes
Feb 1, 2019   |  By Tigera
This guide contains detailed technical instructions on how to install and configure network security on Kubernetes platforms.
tigera logo
How Containers Are Disrupting IT Security & Compliance Controls
Jan 1, 2019   |  By Tigera
Tigera commission an unbiased, third-party research firm to speak with enterprise security professionals to understand the state of network security with modern applications.
tigera logo
Policy-driven Secure Application Connectivity for OpenShift
Dec 1, 2018   |  By Tigera
OpenShift provides a declarative, automated platform to integrate developer workflows into application deployments leveraging open source building blocks such as Kubernetes.
More
5 Ways to Detect Malicious Activity & Protect Your Kubernetes Workloads
Dec 19, 2019   |  By Tigera
Organizations are rapidly moving more and more mission-critical applications to Kubernetes and the cloud to reduce costs, achieve faster deployment times, and improve operational efficiencies. But security teams struggle to achieve a strong security posture with Kubernetes and cloud-based resources because of the inability to apply conventional security practices in the cloud environment.
Kubernetes Micro-Segmentation: Increasing Visibility in Your Cluster
Nov 5, 2019   |  By Tigera
In this presentation, we will talk about the concepts around micro-segmentation, but focusing on the visibility that this approach can bring you in your cluster. Who’s talking to whom, and what are they saying? Should that be allowed or not?
Webinar: The Problem with Firewalls and Kubernetes, and How to Solve it
Oct 11, 2019   |  By Tigera
Containers and Kubernetes adoption are gaining incredible momentum in enterprise organizations. Gartner estimates that 75% of organizations will be running containerized applications by 2022.
Everything you need to know about Kubernetes pod networking on AWS
Oct 10, 2019   |  By Tigera
When you are first starting out with Kubernetes running in Amazon cloud, pod networking is probably not the first thing you think about. Nevertheless, at some point you are going to be 100% dependent on whatever networking you choose. So while you don’t need to be a networking expert, it’s well worth investing a few minutes to gain a basic understanding of the common choices, how they work, and the tradeoffs between them.
What's New in Tigera Calico: An Update on Recent Features & Enhancements
Sep 10, 2019   |  By Tigera
Free and Open Source, Tigera Calico delivers secure networking for the cloud-native era, and 2019 has seen many major enhancements to the most deployed networking and network security solution for Kubernetes.
More

Copyright © 2020 OpsMatters™. All rights reserved.