AppViewX KUBE+ secures containerized workloads and Kubernetes infrastructure

AppViewX launched AppViewX KUBE+, a comprehensive automated certificate lifecycle management solution for Kubernetes environments that prevents outages and reduces security vulnerabilities.

By providing complete certificate visibility, end-to-end automation and policy control, AppViewX KUBE+ simplifies certificate lifecycle management to secure containerized workloads at scale while supporting DevOps speed and agility.

“Broadcom’s platform engineering team is responsible for all our cloud assets which includes the Kubernetes-centric platform that supports our SaaS applications. Since we use various Certificate Authorities and self-signed certificates, we needed enterprise visibility to reduce the risk of outages and security concerns,” said Ganesh Janakiraman, Head of Cloud Platform Engineering, Broadcom. “AppViewX KUBE+ provides our teams with comprehensive discovery and visibility of thousands of certificates putting us in complete control of all certificates across hundreds of Kubernetes clusters.”

AppViewX KUBE+ mitigates application outages, service disruptions, and security and compliance risks by addressing both operational and security challenges associated with certificate management in complex Kubernetes environments. Using role-based access control and self-service capabilities, AppViewX aligns DevOps, CloudOps and InfoSec teams to cross-functionally manage thousands of certificates in Kubernetes, as well as secure ingress traffic (TLS), service mesh and pod-to-pod communications (mTLS), and Kubernetes infrastructure (mTLS).

AppViewX KUBE+ provides the following capabilities and benefits:

  • Discovers all SSL/TLS certificates (self-signed or from any Certificate Authority) across Kubernetes clusters
  • Maintains a dynamic inventory of certificates that are automatically segmented into groups and mapped to Kubernetes teams
  • Automates end-to-end certificate lifecycle management from enrollment to auto-renewal of TLS/mTLS certificates in Kubernetes
  • Creates and enforces enterprise-wide PKI policies to ensure the use of approved CAs, crypto-standards and validity periods

“Whether standing up a cluster or securing its internal orchestration functions, Public Key Infrastructure (PKI) and TLS certificates are foundational to Kubernetes security since they provide strong authentication, encryption, and data integrity across containerized workloads,” said Ravishankar Chamarajnagar, CPO at AppViewX. “AppViewX KUBE+ enables cross-functional teams to automate and overcome the challenges of managing short-lived TLS certificates at scale and speed to ensure security in complex cloud-native environments.”

AppViewX KUBE+ is a centralized certificate management solution that integrates with public and private CAs, Kubernetes environments, DevOps tools and ITSM products. It supports all major Kubernetes platforms and services including hybrid/on-premises (Openshift, Tanzu, Rancher) and cloud provider solutions like Amazon Elastic Kubernetes Service (Amazon EKS), Azure Kubernetes Service (AKS), and Google Kubernetes Engine (GKE) as well as service mesh products like Istio and Linkerd.

As a SaaS solution, AppViewX KUBE+ is available now and is part of the AppViewX Digital Identity Management Platform that includes AppViewX CERT+ and AppViewX PKI+ for automating PKI and certificate lifecycle management across complex hybrid multi-cloud environments.

OPIS

Subscribe to the Help Net Security breaking news e-mail alerts:

OPIS
More about

Don't miss