WhiteSource’s Leading Open Source Security Vulnerabilities Database and Detection Capabilities Now Natively Leveraged Within Aqua’s Container Security Platform[Tel Aviv, Israel - September 19th 2016 – WhiteSource, the leader in continuous open source security and compliance management, and Aqua Security (formerly Scalock), the leader in enterprise-grade security solutions for containerized environments, today announced a new partnership. The partnership leverages WhiteSource’s leading open source security vulnerabilities database and detection capabilities, to automatically find and fix open source security vulnerabilities in containers, as well as the software deployed in them. The solution is suited to both DevOps and production environments, including runtime, providing customers a complete solution.
Aqua Security allows enterprises to secure their containerized environments, by enforcing security and other organizational polices during all development and production phases. With WhiteSource integrated, the Aqua Container Security Platform detects and alerts in real-time on security vulnerabilities in images when they are first selected or built, when they are being used to develop applications, and even when those applications are deployed into production in runtime.
Aqua Security’s customers will benefit from WhiteSource’s leading security vulnerabilities database, which covers over 20 programming languages and sources from NIST’s official NVD, as well as from early-warning security advisories and open source projects’ bug trackers. WhiteSource’s database contains almost 200,000 vulnerabilities, making it the most comprehensive and up to date vulnerabilities database in the market.
The integrated solution of WhiteSource and Aqua Security is the only solution which can detect security vulnerabilities in both the containers themselves and the software deployed on them, in both DevOps and production environments.
Containers are quickly becoming the standard for developing, staging and deploying applications. This rapid deployment of container technology, though exceptionally useful, has far outpaced the means enterprises have to secure the technology. Therefore, this lack of security often translates into many complex and problematic oversight issues. Especially because containers consist of many sources, each potentially being affected by unique vulnerabilities.
“Containers are without a doubt one of the new exciting frontiers of open source usage, and their adoption is set to skyrocket. But security and other oversight issues remain lacking,” said Rami Sass, CEO and Co-founder of WhiteSource. “By partnering with Aqua Security market leading solution, we are now able to offer our best of its kind database and detection capabilities as part of the market’s most comprehensive enterprise-grade container security platform.”
“Aqua Container Security Platform enables engineers to use containers with confidence,” said Dror Davidoff, Co-Founder and CEO of Aqua Security. “With WhiteSource, we’re able to enhance our solution by combining it with an unparalleled security vulnerabilities database that is being constantly updated and improved by some of the trailblazers of the open source component management space.”