Enabling Quick and Safe AKS Migration

AKS Real-time Visibility

Reveal your infrastructure, apps and network security groups

AKS Threat Protection

Prevent malicious attacks and detect behavior anomalies

AKS Secure Migration

Start your AKS experience quickly and securely

Alcide native security solution for Microsoft Azure Kubernetes Services (AKS) provides deep visibility into the entire cloud topology and applications data flow, together with behavioral anomaly threat engine to detect anomalous and malicious network activity. Leveraging the Azure Application Security Groups, the Alcide Policies allow developers to configure Build-time security rules for Azure services and external DNS names.

  • Extending AKS policies with application-aware workload Policy
    • Workload level policies enforced at the Pod level
    • Policy engine implemented using eBPF and include the ability to define FQDN white lists, and
    • Workload level policy extends AKS policies is done through deployment/pod annotations
  • Threat Intelligence – detecting Pod level network activity with crypto-mining, command & control drop location, etc.
  • Threat detection & prevention -Machine-learning based microservice anomaly engine, to detect advanced network attacks – for example, DNS tunneling, and low and slow evolving attacks.