Sign in

Sign in

or

Create a new account

Categories

What is AWS Marketplace Procurement Governance and Entitlement Cost Management How to Sell

Infrastructure Software Backup & Recovery Data Analytics High Performance Computing Migration Network Infrastructure Operating Systems Security Storage

DevOps Agile Lifecycle Management Application Development Application Servers Application Stacks Continuous Integration and Continuous Delivery Infrastructure as Code Issue & Bug Tracking Monitoring Log Analysis Source Control Testing

Business Applications Blockchain Collaboration & Productivity Contact Center Content Management CRM eCommerce eLearning Human Resources IT Business Management Project Management

Machine Learning Human Review Services ML Solutions Data Labeling Services Computer Vision Natural Language Processing Speech Recognition Text Image Video Audio Structured Intelligent Automation Generative AI

Data Products Financial Services Data Healthcare & Life Sciences Data Media & Entertainment Data Telecommunications Data Gaming Data Automotive Data Manufacturing Data Resources Data Retail, Location & Marketing Data Public Sector Data Environmental Data

IoT Analytics Applications Device Connectivity Device Management Device Security Industrial IoT Smart Home & City

Professional Services Assessments Implementation Managed Services Premium Support Training

Industries Education & Research Financial Services Healthcare & Life Sciences Media & Entertainment Industrial Energy Automotive

Cloud Operations Cloud Governance Cloud Financial Management

Delivery Methods Amazon Machine Image Amazon SageMaker AWS Data Exchange CloudFormation Stack Container Image Helm Chart Add-on for Amazon EKS Private Image Build Professional Services SaaS

Solutions AWS Well-Architected Business Applications CloudOps Data & Analytics Data Products DevOps Generative AI Infrastructure Software Internet of Things Machine Learning Migration Security

Industry ??industrySolutions.dropdown.advertising_and_marketing_en??Energy ??industrySolutions.dropdown.engineering_construction_and_real_estate_en??Financial Services Healthcare & Life Industrial ??industrySolutions.dropdown.life_sciences_en??Media & Entertainment Nonprofit ??industrySolutions.dropdown.power_and_utility_en??Public Health Public Sector ??industrySolutions.dropdown.retail_en????industrySolutions.dropdown.sustainability_en??Telecommunications

AWS Service Integrations AWS Control Tower AWS PrivateLink Pre-trained Amazon SageMaker Models

AWS IQ Websites & Mobile Applications Databases & Analytics Networking & Security Machine Learning Productivity & Collaboration Cost Optimization Other

Resources Analyst Reports Blogs Customer Success Stories Events Implementation Guides Videos Webinars Whitepapers

Your Saved List

Become a Channel Partner Sell in AWS Marketplace Amazon Web Services Home Help

KubeArmor

Continue to Subscribe

KubeArmor

By: AccuKnox Latest Version: 1.1.1

Linux/Unix

Continue to Subscribe

Linux/Unix

Continue to Subscribe

Product Overview

KubeArmor enhances security in Bottlerocket deployments on Amazon EKS by restricting processes, files, network usage, safeguarding secrets, certificates, and controlling binary execution. Integrating KubeArmor as a Kubernetes daemonset and operating in systemd mode provides complete runtime security for a variety of workloads. For host protection, it employs inline prevention and best of breed Linux Security Modules, decreasing the attack surface. KubeArmor simplifies policy enforcement in multi node clusters by abstracting LSM complexities, allowing hassle free blocking rules, full monitoring, and no blind spots in visibility.

Version

1.1.1

By

AccuKnox

Video

See Product Video

Categories

Security

Operating System

Linux

Delivery Methods

??pdp.attributes.EKS_ADD_ON_en??
Helm chart

QuickLaunch - new

This product supports QuickLaunch, which helps you easily launch and explore container-based applications. QuickLaunch uses AWS CloudFormation to create an Amazon EKS cluster and Helm charts to launch the application on it. Learn more.

Highlights

Add complete security to Bottlerocket deployments on Amazon EKS with KubeArmor. Limit processes, files, and network usage in your pods. Restrict access to Kubernetes security tokens for specific processes. Safeguard secrets and certificates within containers. Block updates to root certificates in specific folders. Control the execution of binaries in your containers with KubeArmor.
KubeArmor offers complete security for a range of workloads by integrating as a Kubernetes daemonset, and Setting it up in systemd mode to run as host/system processes on bare metal, virtual machines, and containerized workloads. It uses inline prevention to reduce the attack surface, utilizing best-of-breed Linux Security Modules (LSMs) like AppArmor, BPF-LSM, and SELinux for host protection. This approach reduces the attack surface of pods, containers, and VMs.
In a multi-node cluster, each node leveraging Linux Security Module, KubeArmor simplifies policy enforcement by abstracting away the LSMs' complexities. Hassle-free enforcement of blocking rules at the host or workload level Full control over monitoring hosts, pods, and containers No blind spots in visibility and protection for your cloud-native environment.

Pricing Information

Usage Information

Support Information

Customer Reviews