Expansion of the Aqua-Pivotal collaboration delivers comprehensive security for application development and production environments on PCF. Aqua Security, global platform provider for securing container-based and cloud native applications, has announced the public release of Aqua Security’s runtime protection for Pivotal Cloud Foundry (PCF).
Users of Pivotal’s platform can download and install the Aqua Security for PCF service from Pivotal Services Marketplace, and deploy an end-to-end solution for scanning, application assurance and runtime protection for their application workloads.
Cloud Foundry Application Runtime
PCF includes a widely deployed distribution of Cloud Foundry Application Runtime (CFAR) and allows customers to implement the same application platform on any major vendor’s cloud, on premises or in a hybrid model.
“No matter where they began their journey with Pivotal, enterprises routinely begin pushing code into production faster and more frequently with our platform. Therefore, application security checks must be accessible within the deployment pipeline in order to scale safety and compliance,” said Angus MacDonald, GM Technology Ecosystem at Pivotal.
Aqua Security for PCF service
“Solutions such as Aqua provide the automation and controls necessary. Together, we hope to make the task of implementing end-to-end security simpler for our customers," Angus further states.
Aqua Security for PCF is offered in two tiers – standard and advanced protection. The standard tier allows users to:
- Scan their applications for vulnerabilities during the Continuous Integration process
- Provision policies to block unauthorised applications during the staging phase
- Scan and monitor application or container artifacts for vulnerabilities, malware, and user activity
- Apply host assurance policies for application or container artifacts
Aqua’s advanced protection tier includes all of the standard features with an added layer of security, allowing users to:
- Detect and block unapproved changes to running application workloads
- Monitor and control application activity based on customised policies
- View application network connections and apply firewall rules that whitelist authorised connections
- Leverage granular audit trails of access activity, scan events and coverage, application activity and system events
Advanced runtime protection component
Aqua Security for PCF installs natively as a Buildpack (containing the languages and services used by the app)
Aqua Security for PCF installs natively as a Buildpack (containing the languages, runtimes, libraries, and services used by the app), and the advanced runtime protection component is implemented as a Bosh add-on, protecting all Pivotal Application Service apps without requiring any manual changes or individual re-deployments of Aqua per application.
“Since introducing scanning for Pivotal Cloud Foundry last year, we have seen tremendous interest in the PCF platform at some of our largest customers”, said Upesh Patel, VP of Business Development for Aqua. “As they progressed in their application rollouts, they are now looking to protect their production-grade applications as well, and we are pleased to deliver the complete Aqua solution for Pivotal Cloud Foundry today.”
Pivotal customers can get Aqua Security for PCF directly from the Pivotal services marketplace.