Not rendering correctly? View this email as a web page here.
Container & DevSecOps Digest | October: Aqua Secures $25M; Google Introduces Grafeas ; And What if Equifax Used Containers?

A few major announcements this month that we are happy to share with you: Aqua recently raised $25M in Series B funding to capitalize on the strong demand for our cloud-native container security platform. In addition, the Aqua's Image security Scanner is now available on the Azure Marketplace. Lastly, we partnered with Red Hat and are now fully Interoperable with Red Hat OpenShift Container Platform. From the ecosystem we hear that Kubernetes is gaining momentum with their recent 1.8 major release and by joining the Cloud Native Computing Foundry. Read all about these stories and more in our October edition.

As always, you can contact us anytime contact@aquasec.com or follow us here @AquaSecTeam
News You Can Use
Kubernetes 1.8 Kubernetes 1.8: Spot on Security, Workloads and Feature Depth Read on Kubernetes blog ›
https://cloudplatform.googleblog.com/2017/10/introducing-grafeas-open-source-api-.html Google Introduces Grafeas: An open-source API to audit and govern your software supply chain Now build and compliance tools can use the Grafeas API to store, query and retrieve metadata Read on Google blog ›
Rancher Labs Goes All-In On Kubernetes With Upcoming 2.0 Release Rancher Labs Goes All-In On Kubernetes With Upcoming 2.0 Release The major release that entirely commits to Kubernetes as the container orchestration platform of the future. Read on CRN ›
Kubernetes gains momentum as big-name vendors flock to Cloud Native Computing Foundation Kubernetes gains momentum as big-name vendors flock to Cloud Native Computing Foundation
 An interesting read on why the CNCF is attracting to big companies Read on TechCrunch ›
Container security: The seven biggest mistakes companies are making What is DevOps? An executive guide to agile development and IT operations Read why you need to deploy DevOps in your enterprise Read more on ZDNet ›
 

Equifax Breach Hindsight - What If They Used Containers?

 

Equifax breach.pngWeb application vulnerabilities are not uncommon. Instead of trying to guess which specific vulnerability the attackers used, let us examine how web applications can be better protected from similar attacks.

Read more on our blog

 
  
Aqua Open-Source Projects
Aqua's Open Source Projects

We are committed to help the container ecosystem deliver better and more secure code.

 

Check out our open source contributions here

 
Aqua News
http://www.eweek.com/security/aqua-security-raises-25m-to-secure-cloud-native-application-workloads

Aqua Security Raises $25M to Secure Cloud Native Application Workloads
Led by Lightspeed Venture Partners, the Funding Will Propel Aqua’s “Secure Once, Deploy Anywhere” Approach to Revolutionize Application Security for the Cloud-Native Era Read more here ›

 
https://blog.executivebiz.com/2017/10/carahsoft-to-offer-aqua-securitys-container-security-platform-via-gsa-schedule-contract-vehicle/ Carahsoft to Offer Aqua Security’s Container Security Platform via GSA Schedule
Aqua and Carahsoft Already Enabled One Federal Agency to Build More Secure Applications Faster Read here ›
Aqua Collaborates with Red Hat to Deliver Certified Container Security on the Red Hat OpenShift Platform

Aqua Collaborates with Red Hat to Deliver Certified Container Security on the Red Hat OpenShift Platform Aqua is now fully Interoperable with Red Hat OpenShift Container Platform Read the full press release ›
https://www.aquasec.com/news/aqua-security-puresec-partner-secure-container-serverless-applications/

Aqua and PureSec Partner to Secure Container and Serverless Applications Integrated Solution will provide unified security controls for cloud-native apps across development and runtime Read more here
https://blog.aquasec.com/governance-and-control-for-the-container-supply-chain-using-aqua-security-and-google-grafeas Governance and Control for The Container Supply Chain Using Aqua and Google Grafeas Aqua announce support for Google Grafeas - an open source initiative for auditing and governance of the modern software supply chain.
Read on Aqua's blog ›
https://www.prnewswire.com/news-releases/aquas-image-security-scanner-now-an-integrated-add-on-to-azure-container-registry-300525001.html

Aqua's Image Security Scanner Is Now an Integrated Add-On to Azure Container Registry Scans Container Images for Known Vulnerabilities, Configuration Issues and Sensitive Data; Available on The Azure Marketplace Read the press release here Read the full press release ›
Container Security in the Enterprise
document_landingpage_secret_life_of_secrets.png

The Ultimate Guide to Secrets Management in Containers

Securely managing secrets is a challenge multiplied in container environments, due to the complexity of delivering the right secrets to the right container, while safeguarding it from unauthorized access.

In this detailed guide, we examine the security aspects of several approaches to managing secrets in container deployments. We define the security requirements from such solutions, then deep dive into each solution and examine how it holds up. 

   

Download Secrets Management Guide
security_digest_footer_cubes.png