Edera Protect for Kubernetes is now available as a 1.0 release that the company says is generally available and production-ready. Improvements in the 1.0 release include an expanded security model that supports running multiple containers inside a single Edera Protect zone, along with support for fully isolated file system sharing between the host and zones.  

Edera Protect Kubernetes is a Kubernetes and AI security solution that runs anywhere and secures workloads with hard isolation using a cloud-native Type 1 hypervisor. Edera also developed Am I Isolated, which provides a security benchmark that tests for container isolation. 

Edera Protect uses zones to create strong isolation between containers by default. The developers say that in their benchmarks, Edera Protect has achieved 250 secure zones on a single Kubernetes node with just 64GB of RAM. 

The 1.0 release has an expanded security model that supports running multiple containers inside a single Edera Protect zone. It also has support for fully isolated file system sharing between the host and zones, so sensitive data remains protected even when shared.

The new version also comes with support for dynamic resource management, container memory ballooning. In this mode, pod memory sits at a configured target and can balloon up to a maximum amount of memory dynamically.

The update also now has full support for Amazon Linux 2023 in addition to existing support for Amazon Linux 2 when running on AWS. Edera has integrated Protect with the Cilium Container Network Interface, which the team says enables advanced networking capabilities while maintaining Edera's security guarantees. There's also now more observability features, including Prometheus metrics for zone memory consumption and health endpoints for all Edera Protect components.

Alongside the release of Edera Protect 1.0, the company also announced the open sourcing of Styrolite, the Linux container runtime built in Rust by Edera. Styrolite serves as the foundation for Edera Protect and provides a programmatic interface for building and running sandboxed environments. Edera developed Styrolite because they needed a container runtime that could operate as a microservice so they could run containers programmatically similar to how the Container Runtime Interface (CRI) enables Kubernetes to manage containers. The technology is now available to any tool or platform requiring secure, sandboxed environments. 

Attendees at KubeCon + CloudNativeCon Europe in London can see Edera Protect in action in Kubernetes environments. Edera Protect Kubernetes 1.0 is available now.

More Information

Edera Protect Kubernetes

Related Articles

Edera Releases Protect AI And Announces New Funding

Edera Releases Open Source Container Benchmark And Scanner

To be informed about new articles on I Programmer, sign up for our weekly newsletter, subscribe to the RSS feed and follow us on Twitter, Facebook or Linkedin.

Comments

Make a Comment or View Existing Comments Using Disqus

or email your comment to: comments@i-programmer.info