AppViewX launched AppViewX KUBE+, a
comprehensive automated certificate lifecycle management solution for
Kubernetes environments that prevents outages and reduces security
vulnerabilities. By providing complete certificate visibility, end-to-end
automation and policy control, AppViewX KUBE+ simplifies certificate lifecycle
management to secure containerized workloads at scale while supporting DevOps
speed and agility.
"Broadcom's
platform engineering team is responsible for all our cloud assets which
includes the Kubernetes-centric platform that supports our SaaS applications.
Since we use various Certificate Authorities and self-signed certificates, we
needed enterprise visibility to reduce the risk of outages and security
concerns," said Ganesh Janakiraman, Head of Cloud Platform Engineering,
Broadcom. "AppViewX KUBE+ provides our teams with comprehensive discovery and
visibility of thousands of certificates putting us in complete control of all
certificates across hundreds of Kubernetes clusters."
AppViewX
KUBE+ mitigates application outages, service disruptions, and security and
compliance risks by addressing both operational and security challenges
associated with certificate management in complex Kubernetes environments.
Using role-based access control and self-service capabilities, AppViewX aligns
DevOps, CloudOps and InfoSec teams to cross-functionally manage thousands of
certificates in Kubernetes, as well as secure ingress traffic (TLS), service
mesh and pod-to-pod communications (mTLS), and Kubernetes infrastructure
(mTLS).
AppViewX
KUBE+ provides the following capabilities and benefits:
- Discovers all SSL/TLS certificates
(self-signed or from any Certificate Authority) across Kubernetes clusters
- Maintains a dynamic inventory of
certificates that are automatically segmented into groups and mapped to
Kubernetes teams
- Automates end-to-end certificate
lifecycle management from enrollment to auto-renewal of TLS/mTLS
certificates in Kubernetes
- Creates and enforces
enterprise-wide PKI policies to ensure the use of approved CAs,
crypto-standards and validity periods
"Whether
standing up a cluster or securing its internal orchestration functions, Public
Key Infrastructure (PKI) and TLS certificates are foundational to Kubernetes
security since they provide strong authentication, encryption, and data
integrity across containerized workloads," said Ravishankar Chamarajnagar,
Chief Product Officer at AppViewX. "AppViewX KUBE+ enables cross-functional
teams to automate and overcome the challenges of managing short-lived TLS
certificates at scale and speed to ensure security in complex cloud-native
environments."
AppViewX
KUBE+ is a centralized certificate management solution that integrates with
public and private CAs, Kubernetes environments, DevOps tools and ITSM
products. It supports all major Kubernetes platforms and services including
hybrid/on-premises (Openshift, Tanzu, Rancher) and cloud provider solutions
like Amazon Elastic Kubernetes Service (Amazon EKS), Azure Kubernetes Service
(AKS), and Google Kubernetes Engine (GKE) as well as service mesh products like
Istio and Linkerd.
As a SaaS solution,
AppViewX KUBE+ is available now and is part of the AppViewX Digital Identity
Management Platform that includes AppViewX CERT+ and AppViewX PKI+ for
automating PKI and certificate lifecycle management across complex hybrid
multi-cloud environments.