Continuous Security for AKS & Azure DevOps Integration
Alcide’s native security solution for Microsoft Azure Kubernetes Services (AKS) provides cloud discovery, deep visibility into the entire cloud topology and applications data flow, and ongoing hygiene security checks that alert on security and misconfiguration drifts. Combined with Alcide behavioral anomaly threat engine that detects anomalous and malicious network activity, Alcide ensures that the entire dev to production AKS pipeline is secured.
Alcide’s Kubernetes Advisor Integrated with Azure DevOps pipeline to provide security hygiene checks designed to ensure a secured development process before moving to production.
Extending Azure Policy Security Groups with application-aware workload Policy: Workload level policies enforced at the Pod level Policy engine implemented using eBPF and include the ability to define FQDN white lists, and workload level policy extends AKS policies is done through deployment/pod annotations
Alcide Policies allow developers to configure build-time security rules for Azure services and external DNS names.
Threat Intelligence – detecting Pod level network activity with crypto-mining, command and control, drop location, and more.
Threat detection & prevention -Machine-learning based microservice anomaly engine that can detect advanced network attacks. For example, DNS tunneling and low and slow evolving attacks.
Alcide is fully integrated with Azure Sentinel, the cloud-native SIEM solution. Users can now collect, detect, investigate and respond to any events and findings from their Kubernetes clusters, including attacks and policy violations.