subscribe: Daily Newsletter

 

Red Hat enhances cloud-native security

0 comments

Red Hat has announced the general availability of Red Hat OpenShift Container Platform 3.6, the latest version of Red Hat’s enterprise-grade Kubernetes container application platform.
Red Hat OpenShift Container Platform 3.6 offers an enterprise-ready container platform based on Kubernetes 1.6, Red Hat Enterprise Linux and the integrated docker container runtime.
By combining these open source technologies, Red Hat, as a leading contributor to both the docker and Kubernetes projects, helps customers to more quickly roll out new services with the support of a stable, reliable and more secure enterprise container solution powered by the world’s leading enterprise Linux platform.
Modern, cloud-native applications require the same level and sensitivity to security as traditional applications, regardless of the broader innovation that they present. To help enterprises drive more secure operations at both the container and the host operating system level, Red Hat OpenShift Container Platform 3.6 introduces several new and enhanced features designed to further extend enterprise security and compliance procedures including:
* A PCI DSS product applicability guide, which helps organizations that accept, process, store or transmit credit card information understand how the Payment Card Industry Data Security Standard (PCI DSS) impacts Red Hat OpenShift Container Platform and understand what considerations they should make in adopting the solution
* Secrets encryption and image signing allows for the encryption of secrets at rest in backend storage. OpenShift 3.6 offers an ability for platform administrators to enforce signature usage on image content in projects, helping to provide greater assurance that the software tenants running on specific systems is actually allowed to run there.
* Enhancements to NetworkPolicy (Technology Preview) for greater and more nuanced control for how applications can talk to each other and what network resources they expose. NetworkPolicy enables users to make services available while limiting who can access a given application on the network.
The enterprise mix of public and private cloud services and physical resources is not static, as it evolves frequently to meet business need and new customer demands. Running cloud-native applications across these footprints requires consistency – these applications are built from services, which must be accessible across a wide variety of platforms. Red Hat OpenShift Container Platform 3.6 is helping to make these services findable and consumable through the introduction of:
* Service Broker and Service Catalog (Technology Preview) helps users to search for, provision and bind application services to their OpenShift applications, whether those services run in their data center or public cloud.
* OpenShift Template Broker (Technology Preview) enables users to select OpenShift Templates through the new Service Catalog user interface, to deploy multi-container application services in OpenShift.
* Ansible Playbook Broker (Technology Preview) enables the use of Ansible Playbooks for deploying application services on OpenShift and to help bind applications together, regardless of whether the services come from within the OpenShift cluster or elsewhere, including the public cloud.
* Integrated install of Container Native Storage built with Red Hat Gluster Storage delivers highly available, three way replicated storage for the OpenShift registry as well as ready-to-consume persistent storage on initial installation of OpenShift.