Virtualization Technology News and Information
Wallarm Enables Fastest Microservices Environments with Kubernetes-Native Security

Wallarm, the company that delivers AI-powered app and API  protection, today announced the general availability of the Wallarm Envoy API support for Ingress and Service Mesh.

Wallarm is committed to supporting the newest cloud tech to help customers stay ahead of the curve. Having introduced native Kubernetes security support in 2018, we want to stay ahead of the Envoy / Istio trend and enable our customer, who pioneered the user of Service Mesh, with security both North-South and East-West APIs in production.

"Envoy is rapidly winning the hearts and minds of the community by being a foundation of light-weight, high-performance microservices APIs for both inbound and inter-services connectivity. Wallarm is the only security solution that works as fast as Envoy itself and integrates directly into the Envoy", said Stepan Ilyin, Wallarm Chief Product Officer.

What is Envoy?

Envoy is a high-performance distributed routing framework and a "universal data plane" designed for microservices and service mesh architectures. It was originally built C++ by a Lyft engineering team with an extremely low performance overhead and can also be used as a distributed proxy for single service applications. Currently, Envoy is a part of CNCF family and is supported by the foundation

Envoy is a great example of the third generation routing infrastructure learning from the challenges of first-generation technology, like F5 application delivery network (ADN), and second-generation solutions such as NGINX and HAProxy.

Envoy's main advantage is the ability to provide networking features to each service in a platform-independent manner.  By abstracting the network and centralizing routing controls, Envoy enables better observability, performance, and ability to find bottlenecks.

Key Innovation in Wallarm for Envoy

  • Installs directly onto the Envoy infrastructure
  • Protects Service Mesh, including Istio
  • Protects North-South and East-West APIs
  • Extremely low overhead
  • Broad API protocol detection, including gRPC
  • Low false positives
Published Monday, November 18, 2019 10:01 AM by David Marshall
Filed under:
There are no comments for this post.
To post a comment, you must be a registered user. Registration is free and easy! Sign up now!
<November 2019>