CINXE.COM

<!DOCTYPE html><html lang="en" prefix="og: http://ogp.me/ns#"><head><script type="text/javascript" src="https://web-static.archive.org/_static/js/bundle-playback.js?v=7YQSqjSh" charset="utf-8"></script> <script type="text/javascript" src="https://web-static.archive.org/_static/js/wombat.js?v=txqj7nKC" charset="utf-8"></script> <script>window.RufflePlayer=window.RufflePlayer||{};window.RufflePlayer.config={"autoplay":"on","unmuteOverlay":"hidden"};</script> <script type="text/javascript" src="https://web-static.archive.org/_static/js/ruffle/ruffle.js"></script> <script type="text/javascript"> __wm.init("https://web.archive.org/web"); __wm.wombat("https://www.stackrox.com/solutions/red-hat-openshift-security/","20210514233826","https://web.archive.org/","web","https://web-static.archive.org/_static/", "1621035506"); </script> <link rel="stylesheet" type="text/css" href="https://web-static.archive.org/_static/css/banner-styles.css?v=p7PEIJWi" /> <link rel="stylesheet" type="text/css" href="https://web-static.archive.org/_static/css/iconochive.css?v=3PDvdIFv" />  <meta charset="utf-8"><meta name="viewport" content="width=device-width,initial-scale=1"><meta name="description" content="StackRox platform provides full lifecycle security across build, deploy, and runtime phases for your Kubernetes environments in OpenShift"><meta http-equiv="Accept-CH" content="DPR, Viewport-Width, Width"><link rel="apple-touch-icon" sizes="180x180" href="/web/20210514233826im_/https://www.stackrox.com/apple-touch-icon.png"><link rel="icon" type="image/png" sizes="32x32" href="/web/20210514233826im_/https://www.stackrox.com/favicon-32x32.png"><link rel="icon" type="image/png" sizes="16x16" href="/web/20210514233826im_/https://www.stackrox.com/favicon-16x16.png"><link rel="manifest" href="/web/20210514233826/https://www.stackrox.com/manifest.json"><link rel="mask-icon" href="/web/20210514233826im_/https://www.stackrox.com/safari-pinned-tab.svg" color="#5bbad5"><meta name="theme-color" content="#ffffff"><meta property="og:type" content="website"><meta property="og:title" content="OpenShift Security for Red Hat | StackRox: Kubernetes and container security solution"><meta property="og:description" content="StackRox platform provides full lifecycle security across build, deploy, and runtime phases for your Kubernetes environments in OpenShift"><meta property="og:site_name" content="StackRox: Kubernetes and container security solution"><meta property="og:url" content="https://web.archive.org/web/20210514233826/https://www.stackrox.com/solutions/red-hat-openshift-security/"><meta property="og:type" content="article"><meta property="article:publisher" content="https://www.facebook.com/GoStackRox/"><meta property="og:image" content="https://web.archive.org/web/20210514233826im_/https://res.cloudinary.com/stackrox/home-social-media.jpg"><meta property="og:image:secure_url" content="https://res.cloudinary.com/stackrox/home-social-media.jpg"><meta name="twitter:card" content="summary_large_image"><meta name="twitter:image" content="https://web.archive.org/web/20210514233826im_/https://www.stackrox.com/home-social-media.jpg"><meta name="twitter:title" content="OpenShift Security for Red Hat"><meta name="twitter:description" content="StackRox platform provides full lifecycle security across build, deploy, and runtime phases for your Kubernetes environments in OpenShift"><meta name="twitter:creator" content="@stackrox"><script src="https://web.archive.org/web/20210514233826js_/https://cdn.cookielaw.org/scripttemplates/otSDKStub.js" type="text/javascript" charset="UTF-8" data-domain-script="79c9f48f-6717-4101-a15b-9713bb92f46a"></script><script type="text/javascript">function OptanonWrapper() { }</script><style>.async-hide {opacity: 0 !important}</style><script>var optimizeEnabled = false;</script><script async src="https://web.archive.org/web/20210514233826js_/https://www.googletagmanager.com/gtag/js?id=UA-59161668-1"></script><script>window.dataLayer = window.dataLayer || [] function gtag(){dataLayer.push(arguments)} gtag('js', new Date())</script><script>function tagman(w,d,s,l,i){w[l]=w[l]||[];w[l].push({'gtm.start': new Date().getTime(),event:'gtm.js'});var f=d.getElementsByTagName(s)[0], j=d.createElement(s),dl=l!='dataLayer'?'&l='+l:'';j.async=true;j.src= 'https://web.archive.org/web/20210514233826/https://www.googletagmanager.com/gtm.js?id='+i+dl;f.parentNode.insertBefore(j,f); }</script><script>!function(w,d){if(!w.rdt){var p=w.rdt=function(){p.sendEvent?p.sendEvent.apply(p,arguments):p.callQueue.push(arguments)};p.callQueue=[];var t=d.createElement("script");t.src="https://web.archive.org/web/20210514233826/https://www.redditstatic.com/ads/pixel.js",t.async=!0;var s=d.getElementsByTagName("script")[0];s.parentNode.insertBefore(t,s)}}(window,document);rdt('init','t2_4przlgfg');rdt('track', 'PageVisit');</script><link rel="canonical" href="https://web.archive.org/web/20210514233826/https://www.stackrox.com/solutions/red-hat-openshift-security/"><title>OpenShift Security for Red Hat | StackRox</title><link href="/web/20210514233826cs_/https://www.stackrox.com/css/app.css" rel="stylesheet"><script type="text/javascript">var customPath = "/fonts/";</script><script type="text/javascript" src="/web/20210514233826js_/https://www.stackrox.com/fonts/webfonts/MyFontsWebfontsKit.js"></script><script src="https://web.archive.org/web/20210514233826js_/https://www.google.com/recaptcha/api.js"></script><script src="//web.archive.org/web/20210514233826js_/https://app-sj25.marketo.com/js/forms2/js/forms2.min.js"></script></head><body data-hello-bar="true"><div class="headers"><div class="hello-bar bg-chestnut-rose-semi text-center align-content-middle"><div class="row align-middle"><div class="column"><div class="mod"><span>StackRox is now Red Hat Advanced Cluster Security for聽Kubernetes</span> <a class="show-for-medium button" target="_blank" rel="nofollow noopener" href="https://web.archive.org/web/20210514233826/https://www.openshift.com/products/kubernetes-security">Learn more ></a></div></div><div class="column shrink"><a class="hide-for-medium button" target="_blank" rel="nofollow noopener" href="https://web.archive.org/web/20210514233826/https://www.openshift.com/products/kubernetes-security"><img src="https://web.archive.org/web/20210514233826im_/https://d33wubrfki0l68.cloudfront.net/00013a2459dd06783b75462903a78d0a290d9ee6/d0c2f/img/arrow-right-circle.svg" alt="{ .link_text }}"></a></div></div></div><header class="masthead"><div class="row"><div class="logo-container column small-collapse-right"><a href="/web/20210514233826/https://www.stackrox.com/"><div class="logo"><span class="show-for-sr">StackRox</span></div></a></div><div class="columns shrink hide-for-medium"><a class="button no-nav-request" href="/web/20210514233826/https://www.stackrox.com/request-demo/"><span>Request Demo</span> </a><a href="#" class="header-button nav-handle hamburger hamburger--collapse show-for-small-only"><span class="show-for-sr">Navigation</span><div class="hamburger-box"><div class="hamburger-inner"></div></div></a></div><nav class="text-right column" role="navigation" data-navigation-handle=".nav-handle" data-navigation-content=".page" aria-label="main navigation"><ul class="main-menu"><li><a href="/web/20210514233826/https://www.stackrox.com/why-stackrox/">Why StackRox</a></li><li><a href="/web/20210514233826/https://www.stackrox.com/platform/">Platform</a></li><li><a href="#">Solutions</a><ul class="mega-menu"><li class="mega-cols"><div><a class="menu-heading" href="#" tabindex="-1">Use Cases</a><ol><li><a href="/web/20210514233826/https://www.stackrox.com/use-cases/visibility/">Visibility</a></li><li><a href="/web/20210514233826/https://www.stackrox.com/use-cases/vulnerability-management/">Vulnerability Management</a></li><li><a href="/web/20210514233826/https://www.stackrox.com/use-cases/compliance/">Compliance</a></li><li><a href="/web/20210514233826/https://www.stackrox.com/use-cases/network-segmentation/">Network Segmentation</a></li><li><a href="/web/20210514233826/https://www.stackrox.com/use-cases/risk-profiling/">Risk Profiling</a></li><li><a href="/web/20210514233826/https://www.stackrox.com/use-cases/configuration-management/">Configuration Management</a></li><li><a href="/web/20210514233826/https://www.stackrox.com/use-cases/threat-detection/">Threat Detection</a></li><li><a href="/web/20210514233826/https://www.stackrox.com/use-cases/incident-response/">Incident Response</a></li></ol></div><div><a class="menu-heading" href="#" tabindex="-1">Environments</a><ol><li><a href="/web/20210514233826/https://www.stackrox.com/solutions/aws-security/">AWS</a></li><li><a href="/web/20210514233826/https://www.stackrox.com/solutions/microsoft-azure-security/">Azure</a></li><li><a href="/web/20210514233826/https://www.stackrox.com/solutions/docker-security/">Docker</a></li><li><a href="/web/20210514233826/https://www.stackrox.com/solutions/gke-security-for-google-cloud-platform/">Google Cloud Platform</a></li><li><a href="/web/20210514233826/https://www.stackrox.com/solutions/red-hat-openshift-security/">Red Hat OpenShift</a></li><li><a href="/web/20210514233826/https://www.stackrox.com/solutions/federal-agencies/">Federal Agencies</a></li></ol></div></li></ul></li><li><a href="/web/20210514233826/https://www.stackrox.com/customers/">Customers</a></li><li><a href="#">Resources</a><ul class="mega-menu"><li class="mega-cols"><div><a class="menu-heading" href="#" tabindex="-1">Resources</a><ol><li><a href="/web/20210514233826/https://www.stackrox.com/assets/#whitepapers-and-reports">Whitepapers and Reports</a></li><li><a href="/web/20210514233826/https://www.stackrox.com/assets/#demos-and-videos">Demos and Videos</a></li><li><a href="/web/20210514233826/https://www.stackrox.com/assets/#case-studies">Case Studies</a></li><li><a href="/web/20210514233826/https://www.stackrox.com/assets/#upcoming-webinars">Upcoming Webinars</a></li><li><a href="/web/20210514233826/https://www.stackrox.com/assets/#on-demand-webinars">On-Demand Webinars</a></li><li><a href="/web/20210514233826/https://www.stackrox.com/assets/#data-sheets-solution-briefs">Data Sheets, Solution Briefs</a></li><li><a href="/web/20210514233826/https://www.stackrox.com/assets/#infographics">Infographics</a></li></ol></div><div><a class="menu-heading" href="#" tabindex="-1">Featured Resources</a><ol><li><a href="/web/20210514233826/https://www.stackrox.com/kubernetes-native-security/">What is Kubernetes-native Security?</a></li><li><a href="/web/20210514233826/https://www.stackrox.com/container-security-maturity-model/">Container Security Maturity Model</a></li><li><a href="/web/20210514233826/https://www.stackrox.com/kubernetes-adoption-security-and-market-share-for-containers/">Kubernetes Security and Adoption Trends</a></li><li><a href="https://web.archive.org/web/20210514233826/https://www.stackrox.com/pci-compliance-in-kubernetes-environments/">Achieving PCI Compliance in Kubernetes</a></li></ol></div></li></ul></li><li><a href="#">Company</a><ul><li><a href="/web/20210514233826/https://www.stackrox.com/about/">About Us</a></li><li><a href="/web/20210514233826/https://www.stackrox.com/partners/">Partners</a></li><li><a href="/web/20210514233826/https://www.stackrox.com/news/#events">Upcoming Events</a></li><li><a href="/web/20210514233826/https://www.stackrox.com/careers/">Careers</a></li><li><a href="/web/20210514233826/https://www.stackrox.com/news/">Newsroom</a></li></ul></li><li><a href="/web/20210514233826/https://www.stackrox.com/post/">Blog</a></li><li><a href="/web/20210514233826/https://www.stackrox.com/wiki/">Wiki</a></li><li class="request-button"><a class="request-divider no-barba" href="https://web.archive.org/web/20210514233826/https://security.stackrox.com/request-a-demo.html"><span>Request Demo</span></a></li></ul></nav></div></header></div><div id="barba-wrapper"><div class="barba-container"><noscript><iframe src="https://web.archive.org/web/20210514233826if_/https://www.googletagmanager.com/ns.html?id=GTM-TWB7KDZ" height="0" width="0" style="display:none;visibility:hidden"></iframe></noscript><main class="page"><style>@media print, screen and (min-width: 48em) { .block-1620983545913077051 { background-image: linear-gradient(90deg, #b27094 35%, rgba(88, 62, 176, 0.45) 88%, #9b92d5 100%), url(https://web.archive.org/web/20210514233826im_/https://res.cloudinary.com/stackrox/fl_lossy,f_auto/v1574797673/red-hat-certified-tech-partner-1_yhsexy.png); background-size: 100% 100%, 75rem; background-position: 0 0, 100% 50%; background-repeat: no-repeat; } }</style><section class="block block-hero-4"><div class="row block-full-height block-1620983545913077051 bg-rose-gradient"><div class="small-12 medium-8 large-7 columns block-no-margin align-content-middle"><div class="mod"><h1 data-sal="fade">Securing Kubernetes on Red Hat聽OpenShift</h1><p data-sal="fade" style="--animation-delay: .15s">Full lifecycle security across build, deploy, and runtime phases for your Kubernetes workloads on聽OpenShift</p></div></div></div></section><section class="block block-side-by-side block-1620983545913248634 bg-white"><hr><div class="row align-middle sbs-wrapper"><div class="column small-12 medium-7 large-6"><div class="mod"><div class="sbs-text sbs-simple sbs-margin-r"><h2>Security for Kubernetes on Red Hat OpenShift</h2><p>StackRox is available as a Red Hat certified container on the <a href="https://web.archive.org/web/20210514233826/https://access.redhat.com/containers/?tab=overview#/registry.connect.redhat.com/stackrox/main" target="_blank" rel="nofollow noopener">Red Hat Container Catalog</a>. The StackRox platform, with its deep integrations with Kubernetes, provides full life cycle security across build, deploy, and runtime phases for your Kubernetes environments on OpenShift. Customers trust StackRox to protect their cloud-native, on-premises, or hybrid OpenShift environments from vulnerabilities and misconfigurations, ensure compliance with external and internal policies, and detect and stop runtime threats.</p></div></div></div><div class="column small-12 medium-5 sbs-simple large-6"><div class="mod"><img class="cld-responsive sbs-border sbs-screen" data-src="https://web.archive.org/web/20210514233826/https://res.cloudinary.com/stackrox/w_auto,dpr_auto,c_scale,fl_lossy,f_auto/v1560478380/instant-asset-inventory-and-status.png" alt=""></div></div></div></section><div class="block block-spacer" style="line-height:4"> </div><section class="block block-side-by-side block-1620983545913571630 bg-white"><hr><div class="row align-middle sbs-wrapper"><div class="column small-12 medium-7 large-6 small-order-1 medium-order-2"><div class="mod"><div class="sbs-text sbs-simple sbs-margin-l"><h2>Vulnerability management</h2><p>Protect your containers against vulnerabilities from the time images are built until they鈥檙e deployed and running. StackRox can block vulnerable images from being deployed and integrates with your approved registries, including OpenShift Container Registry (OCR), for granular policy enforcement. StackRox also provides extensive support for third-party scanners such as Anchore, Red Hat Quay, Clair, and Tenable to augment your existing image scanning tools.</p><p><a href="/web/20210514233826/https://www.stackrox.com/use-cases/vulnerability-management/"><strong>Learn more ></strong></a></p></div></div></div><div class="column small-12 medium-5 sbs-simple large-6 small-order-2 medium-order-1"><div class="mod"><img class="cld-responsive sbs-border sbs-screen" data-src="https://web.archive.org/web/20210514233826/https://res.cloudinary.com/stackrox/w_auto,dpr_auto,c_scale,fl_lossy,f_auto/v1560479193/image-scanning.png" alt=""></div></div></div></section><div class="block block-spacer" style="line-height:4"> </div><section class="block block-side-by-side block-1620983545913879069 bg-white"><hr><div class="row align-middle sbs-wrapper"><div class="column small-12 medium-7 large-6"><div class="mod"><div class="sbs-text sbs-simple sbs-margin-r"><h2>Network segmentation</h2><p>StackRox provides comprehensive network security for Kubernetes deployments on OpenShift. Leverage our network graph to see your allowed vs. active network traffic across deployments. We integrate with any Container Network Interface to leverage the power of OpenShift for network policy enforcement. Use StackRox to simulate and apply changes to network segmentation policies, and automatically generate updated YAML files based on behavioral modeling of active traffic to tighten overly permissive Kubernetes network policies.</p><p><a href="/web/20210514233826/https://www.stackrox.com/use-cases/network-segmentation/"><strong>Learn more ></strong></a></p></div></div></div><div class="column small-12 medium-5 sbs-simple large-6"><div class="mod"><img class="cld-responsive sbs-border sbs-screen" data-src="https://web.archive.org/web/20210514233826/https://res.cloudinary.com/stackrox/w_auto,dpr_auto,c_scale,fl_lossy,f_auto/v1560476197/auto-generate-yaml-files.png" alt=""></div></div></div></section><div class="block block-spacer" style="line-height:3"> </div><section class="section block block-quotes bg-light"><div class="row carousel carousel-1620983545914156034" data-slick="{"autoplay": false, "autoplaySpeed": 5000, "slidesToShow": 1, "fade": false, "useTransform": true, "dots": true, "slidesToScroll": 1, "adaptiveHeight": true}"><div class="row align-center"><div class="small-12 medium-10 large-11 xlarge-9 column"><blockquote><p data-sal="fade">Mitigating the growing threat of Kubernetes vulnerabilities and avoiding misconfigurations are major priorities for us. StackRox allows us to keep moving fast on our digital transformation initiatives while improving our security.</p><footer data-sal="fade" style="--animation-delay: .15s">Maxx Lobo <small>CTO</small><hr><span class="show-for-sr">Ask Media Group</span> <img class="svg-inline" src="https://web.archive.org/web/20210514233826im_/https://res.cloudinary.com/stackrox/v1594009484/ask-media-group-logo_uzwk2h.png"></footer></blockquote></div></div></div></section><script>function waitForJquery(method) { if (window.jQuery) method(); else setTimeout(function() { waitForJquery(method) }, 50); } waitForJquery(function() { $('.carousel-1620983545914156034').slick(); });</script><div class="block block-spacer" style="line-height:3"> </div><section class="block block-side-by-side block-1620983545914295993 bg-white"><hr><div class="row align-middle sbs-wrapper"><div class="column small-12 medium-7 large-6 small-order-1 medium-order-2"><div class="mod"><div class="sbs-text sbs-simple sbs-margin-l"><h2>Continuous compliance with CIS benchmarks and beyond</h2><p>StackRox provides industry-leading compliance capabilities to help ensure adherence to CIS Benchmarks for Docker and Kubernetes as well as NIST, PCI, and HIPAA. Use our policy templates to instantly generate audit reports and effortlessly identify non-compliant clusters, nodes, or namespaces.</p><p><a href="/web/20210514233826/https://www.stackrox.com/use-cases/compliance/"><strong>Learn more ></strong></a></p></div></div></div><div class="column small-12 medium-5 sbs-simple large-6 small-order-2 medium-order-1"><div class="mod"><img class="cld-responsive sbs-border sbs-screen" data-src="https://web.archive.org/web/20210514233826/https://res.cloudinary.com/stackrox/w_auto,dpr_auto,c_scale,fl_lossy,f_auto/v1560478530/continous-compliance-checks.png" alt=""></div></div></div></section><div class="block block-spacer" style="line-height:4"> </div><section class="block block-side-by-side block-1620983545914664284 bg-white"><hr><div class="row align-middle sbs-wrapper"><div class="column small-12 medium-7 large-6"><div class="mod"><div class="sbs-text sbs-simple sbs-margin-r"><h2>Configuration management</h2><p>StackRox leverages its Kubernetes-native architecture to apply rich context for configuration management, spanning containers, images, deployments, and OpenShift itself. With StackRox, organizations can identify and remediate misconfigurations such as exposed secrets, excessive privileges, and unnecessary network reachability. Leverage pre-built policy templates or create custom policies to prevent builds or deployments that don鈥檛 meet your security, compliance, or DevOps best practices requirements.</p><p><a href="/web/20210514233826/https://www.stackrox.com/use-cases/configuration-management/"><strong>Learn more ></strong></a></p></div></div></div><div class="column small-12 medium-5 sbs-simple large-6"><div class="mod"><img class="cld-responsive sbs-border sbs-screen" data-src="https://web.archive.org/web/20210514233826/https://res.cloudinary.com/stackrox/w_auto,dpr_auto,c_scale,fl_lossy,f_auto/v1560481347/image-configuration-checks.png" alt=""></div></div></div></section><div class="block block-spacer" style="line-height:4"> </div><section class="block block-side-by-side block-1620983545981663125 bg-white"><hr><div class="row align-middle sbs-wrapper"><div class="column small-12 medium-7 large-6 small-order-1 medium-order-2"><div class="mod"><div class="sbs-text sbs-simple sbs-margin-l"><h2>Runtime detection and response</h2><p>StackRox combines behavioral modeling with rules, allow listing, and baselining to detect and prevent runtime threats on OpenShift platforms. StackRox identifies threats as they occur across several critical areas, including process execution, network connections and flows, and privilege escalation. Use our out-of-the-box policies and automated policy enforcement or build custom policies that combine industry standards with your company鈥檚 own internal policies.</p><p><a href="/web/20210514233826/https://www.stackrox.com/use-cases/threat-detection/"><strong>Learn more ></strong></a></p></div></div></div><div class="column small-12 medium-5 sbs-simple large-6 small-order-2 medium-order-1"><div class="mod"><img class="cld-responsive sbs-border sbs-screen" data-src="https://web.archive.org/web/20210514233826/https://res.cloudinary.com/stackrox/w_auto,dpr_auto,c_scale,fl_lossy,f_auto/v1560482921/real-time-threat-monitoring.png" alt=""></div></div></div></section><div class="block block-spacer" style="line-height:4"> </div><section class="block block-side-by-side block-1620983545982025718 bg-white"><hr><div class="row align-middle sbs-wrapper"><div class="column small-12 medium-7 large-6"><div class="mod"><div class="sbs-text sbs-simple sbs-margin-r"><h2>Risk prioritization at scale</h2><p>Use StackRox to automatically profile and prioritize risks across every OpenShift deployment. Unlike other security solutions, StackRox goes beyond image scanning to combine CVE details with other risk factors, such as deployment misconfigurations including exposed secrets or overly permission network policies, runtime anomalies, and other contextual information to identify the top issues that need immediate remediation.</p><p><a href="/web/20210514233826/https://www.stackrox.com/use-cases/risk-profiling/"><strong>Learn more ></strong></a></p></div></div></div><div class="column small-12 medium-5 sbs-simple large-6"><div class="mod"><img class="cld-responsive sbs-border sbs-screen" data-src="https://web.archive.org/web/20210514233826/https://res.cloudinary.com/stackrox/w_auto,dpr_auto,c_scale,fl_lossy,f_auto/v1560479819/risk-prioritization-at-scale.png" alt=""></div></div></div></section><div class="block block-spacer" style="line-height:3"> </div><section class="section block block-cards block-cards-layout-50-50 cards-tint"><div class="row cards small-up-1 medium-up-3"><div class="column card text-center"><div class="mod"><div class="img-block"><div class="noise noise-mask"><img alt="" src="https://web.archive.org/web/20210514233826im_/https://res.cloudinary.com/stackrox/v1559710397/why-stackrox/platform-cta.svg"></div></div><h3>30 day free trial</h3><p>See the StackRox Kubernetes Security Platform in action in your environment</p></div><div class="mod"><a target="_blank" rel="nofollow noopener" class="button no-barba" href="https://web.archive.org/web/20210514233826/https://security.stackrox.com/request-a-free-trial.html">Start your trial</a></div></div><div class="column card text-center"><div class="mod"><div class="img-block"><div class="noise noise-mask"><img alt="" src="https://web.archive.org/web/20210514233826im_/https://res.cloudinary.com/stackrox/v1559685384/home/ctas/request-demo.svg"></div></div><h3>Ready to secure your containers?</h3><p>Our container security experts would love to show you StackRox in聽action</p></div><div class="mod"><a class="button no-barba" href="https://web.archive.org/web/20210514233826/https://security.stackrox.com/request-a-demo.html">Request a Demo</a></div></div></div></section></main><footer><div class="row"><div class="small-12 large-3 columns logo-collapse"><div class="footer-logo-block"><p class="footer-logo"><img src="https://web.archive.org/web/20210514233826im_/https://d33wubrfki0l68.cloudfront.net/3ca7e0178c1200656ed0478163821952de7c4050/dba56/img/redhat-stackrox-wh.png" alt=""> <span class="show-for-sr">StackRox</span></p><p>StackRox is now part of Red Hat!<br>Learn more at <a href="https://web.archive.org/web/20210514233826/https://redhat.com/?sc_cid=7013a000002w3OqAAI" target="_blank">redhat.com</a><br>Sign up for <a href="https://web.archive.org/web/20210514233826/https://engage.redhat.com/Global-Preference-Center?sc_cid=7013a000002w3OqAAI" target="_blank">Red Hat newsletters</a></p></div><div><p>100 View Street, Suite 204<br>Mountain View, CA 94041</p><p class="half-space">+1 (650) 385-8329</p></div><div><div class="button-group social-icons"><a class="button button-facebook no-barba" target="_blank" href="https://web.archive.org/web/20210514233826/https://www.facebook.com/GoStackRox/" title="Connect with us on Facebook"><span class="show-for-sr">Share on Facebook</span> </a><a class="button button-twitter no-barba" target="_blank" href="https://web.archive.org/web/20210514233826/https://twitter.com/StackRox" title="Connect with us on Twitter"><span class="show-for-sr">Share on Twitter</span> </a><a class="button button-linkedin no-barba" target="_blank" href="https://web.archive.org/web/20210514233826/https://www.linkedin.com/company/stackrox" title="Connect with us on LinkedIn"><span class="show-for-sr">Share on LinkedIn</span></a></div><div><p><a href="/web/20210514233826/https://www.stackrox.com/contact/" class="button button-outline">Contact Us</a><br><br><a class="no-barba" href="/web/20210514233826/https://www.stackrox.com/cookies/">Cookie Preferences and Do Not Sell My Info</a></p></div></div></div><div class="small-12 large-9 columns"><ul class="main-menu"><ul class="top-menu"><li><a href="/web/20210514233826/https://www.stackrox.com/why-stackrox/">Why StackRox</a></li><li><a href="/web/20210514233826/https://www.stackrox.com/platform/">Platform</a></li><li><a href="/web/20210514233826/https://www.stackrox.com/customers/">Customers</a></li><li><a href="/web/20210514233826/https://www.stackrox.com/assets/">Resources</a></li><li><a href="/web/20210514233826/https://www.stackrox.com/post/">Blog</a></li><li><a href="/web/20210514233826/https://www.stackrox.com/wiki/">Wiki</a></li></ul><li><a class="menu-heading" href="#" tabindex="-1">Use Cases</a><ol><li><a href="/web/20210514233826/https://www.stackrox.com/use-cases/visibility/">Visibility</a></li><li><a href="/web/20210514233826/https://www.stackrox.com/use-cases/vulnerability-management/">Vulnerability Management</a></li><li><a href="/web/20210514233826/https://www.stackrox.com/use-cases/compliance/">Compliance</a></li><li><a href="/web/20210514233826/https://www.stackrox.com/use-cases/network-segmentation/">Network Segmentation</a></li><li><a href="/web/20210514233826/https://www.stackrox.com/use-cases/risk-profiling/">Risk Profiling</a></li><li><a href="/web/20210514233826/https://www.stackrox.com/use-cases/configuration-management/">Configuration Management</a></li><li><a href="/web/20210514233826/https://www.stackrox.com/use-cases/threat-detection/">Threat Detection</a></li><li><a href="/web/20210514233826/https://www.stackrox.com/use-cases/incident-response/">Incident Response</a></li></ol></li><li><a class="menu-heading" href="#" tabindex="-1">Environments</a><ol><li><a href="/web/20210514233826/https://www.stackrox.com/solutions/aws-security/">AWS</a></li><li><a href="/web/20210514233826/https://www.stackrox.com/solutions/microsoft-azure-security/">Azure</a></li><li><a href="/web/20210514233826/https://www.stackrox.com/solutions/docker-security/">Docker</a></li><li><a href="/web/20210514233826/https://www.stackrox.com/solutions/gke-security-for-google-cloud-platform/">Google Cloud Platform</a></li><li><a href="/web/20210514233826/https://www.stackrox.com/solutions/red-hat-openshift-security/">Red Hat OpenShift</a></li><li><a href="/web/20210514233826/https://www.stackrox.com/solutions/federal-agencies/">Federal Agencies</a></li></ol></li><li><a class="menu-heading" href="#" tabindex="-1">Featured Resources</a><ol><li><a href="https://web.archive.org/web/20210514233826/https://www.stackrox.com/post/2020/07/gke-security-best-practices-designing-secure-clusters/">GKE Security Best Practices</a></li><li><a href="https://web.archive.org/web/20210514233826/https://www.stackrox.com/wiki/cis-benchmarks-for-kubernetes/">CIS Benchmarks for Kubernetes</a></li><li><a href="https://web.archive.org/web/20210514233826/https://www.stackrox.com/wiki/pci-dss-compliance-containers-kubernetes/">PCI compliance in container and Kubernetes environments</a></li><li><a href="/web/20210514233826/https://www.stackrox.com/post/2020/05/kubernetes-security-101/">Kubernetes Security 101</a></li><li><a href="/web/20210514233826/https://www.stackrox.com/post/2019/09/docker-security-101/">Docker Security 101</a></li><li><a href="/web/20210514233826/https://www.stackrox.com/post/2019/09/amazon-eks-security-best-practices/">EKS Security Best Practices</a></li><li><a href="/web/20210514233826/https://www.stackrox.com/post/2019/04/setting-up-kubernetes-network-policies-a-detailed-guide/">Kubernetes Network Policies</a></li><li><a href="/web/20210514233826/https://www.stackrox.com/post/2019/09/12-kubernetes-configuration-best-practices/">Kubernetes Configuration Best Practices</a></li><li><a href="/web/20210514233826/https://www.stackrox.com/post/2019/08/istio-security-basics-running-microservices-on-zero-trust-networks/">Istio Security Basics</a></li><li><a href="/web/20210514233826/https://www.stackrox.com/kubernetes-adoption-security-and-market-share-for-containers/">Kubernetes Adoption and Security Trends</a></li><li><a href="/web/20210514233826/https://www.stackrox.com/post/2019/03/11-tips-to-operationalizing-kubernetes-admission-controllers-for-better-security/">Admission Controllers</a></li><li><a href="/web/20210514233826/https://www.stackrox.com/post/2017/08/hardening-docker-containers-and-hosts-against-vulnerabilities-a-security-toolkit/">Hardening Docker Containers and Images</a></li></ol></li><li><a href="#">Company</a><ul><li><a href="/web/20210514233826/https://www.stackrox.com/about/">About Us</a></li><li><a href="/web/20210514233826/https://www.stackrox.com/partners/">Partners</a></li><li><a href="/web/20210514233826/https://www.stackrox.com/news/#events">Upcoming Events</a></li><li><a href="/web/20210514233826/https://www.stackrox.com/careers/">Careers</a></li><li><a href="/web/20210514233826/https://www.stackrox.com/news/">Newsroom</a></li></ul></li></ul></div></div><div class="row"><div class="small-12 columns"><ul class="copyright-bar"><li><a href="/web/20210514233826/https://www.stackrox.com/privacy/">Privacy Policy</a></li><li>漏 2021 StackRox, Inc. All Rights Reserved</li></ul></div><canvas id="glcanvas" width="10" height="10">Your browser doesn't appear to support the <code><canvas></code> element.</canvas></div></footer></div></div><link rel="stylesheet" href="//web.archive.org/web/20210514233826cs_/https://cdnjs.cloudflare.com/ajax/libs/highlight.js/9.12.0/styles/default.min.css"><script src="//web.archive.org/web/20210514233826js_/https://cdnjs.cloudflare.com/ajax/libs/highlight.js/9.12.0/highlight.min.js"></script><script src="https://web.archive.org/web/20210514233826js_/https://www.youtube.com/iframe_api"></script><script src="/web/20210514233826js_/https://www.stackrox.com/js/app.js"></script><script type="text/javascript">(function() { var didInit = false; function initMunchkin() { if (didInit === false) { didInit = true; Munchkin.init("219-UEH-533"); } } var s = document.createElement("script"); s.type = "text/javascript"; s.async = true; s.src = "//web.archive.org/web/20210514233826/https://munchkin.marketo.net/munchkin.js"; s.onreadystatechange = function() { if (this.readyState == "complete" || this.readyState == "loaded") { initMunchkin(); } }; s.onload = initMunchkin; document.getElementsByTagName("head")[0].appendChild(s); })();</script><script type="text/javascript">adroll_adv_id = "EQIFV4EMUBBIZE3KNNHEVM"; adroll_pix_id = "7WXFE56Q2BD23BF63XP6KE"; (function() { var _onload = function() { if (document.readyState && !/loaded|complete/.test(document.readyState)) { setTimeout(_onload, 10); return; } if (!window.__adroll_loaded) { __adroll_loaded = true; setTimeout(_onload, 50); return; } var scr = document.createElement("script"); var host = "https:" == document.location.protocol ? "https://web.archive.org/web/20210514233826/https://s.adroll.com" : "https://web.archive.org/web/20210514233826/http://a.adroll.com"; scr.setAttribute("async", "true"); scr.type = "text/javascript"; scr.src = host + "/j/roundtrip.js"; ((document.getElementsByTagName("head") || [null])[0] || document.getElementsByTagName("script")[0].parentNode).appendChild( scr ); }; if (window.addEventListener) { window.addEventListener("load", _onload, false); } else { window.attachEvent("onload", _onload); } })();</script><script type="text/javascript">_linkedin_partner_id = "670665"; window._linkedin_data_partner_ids = window._linkedin_data_partner_ids || []; window._linkedin_data_partner_ids.push(_linkedin_partner_id);</script><script type="text/javascript">(function() { var s = document.getElementsByTagName("script")[0]; var b = document.createElement("script"); b.type = "text/javascript"; b.async = true; b.src = "https://web.archive.org/web/20210514233826/https://snap.licdn.com/li.lms-analytics/insight.min.js"; s.parentNode.insertBefore(b, s); })();</script><noscript><img height="1" width="1" style="display:none" alt="" src="https://web.archive.org/web/20210514233826im_/https://dc.ads.linkedin.com/collect/?pid=670665&fmt=gifhttps://dc.ads.linkedin.com/collect/?pid=670665&fmt=gif"></noscript><script src="//web.archive.org/web/20210514233826js_/https://script.crazyegg.com/pages/scripts/0085/6637.js" async="async"></script><script type="text/javascript" async>(function(o, l, a, r, k, y) { if (o.olark) return; r = "script"; y = l.createElement(r); r = l.getElementsByTagName(r)[0]; y.async = 1; y.src = "//" + a; r.parentNode.insertBefore(y, r); y = o.olark = function() { k.s.push(arguments); k.t.push(+new Date()); }; y.extend = function(i, j) { y("extend", i, j); }; y.identify = function(i) { y("identify", (k.i = i)); }; y.configure = function(i, j) { y("configure", i, j); k.c[i] = j; }; k = y._ = { s: [], t: [+new Date()], c: {}, l: a }; })(window, document, "static.olark.com/jsclient/loader.js"); olark.identify("9065-461-10-6633");</script><script id="term-e7e5d07437489" src="https://web.archive.org/web/20210514233826js_/https://vidassets.terminus.services/a155e1b5-bd3e-4b22-8cd2-b0b038f30222/t.js"></script><script src="https://web.archive.org/web/20210514233826js_/https://js.adsrvr.org/up_loader.1.1.0.js"></script><script>ttd_dom_ready( function() { if (typeof TTDUniversalPixelApi === 'function') { var universalPixelApi = new TTDUniversalPixelApi(); universalPixelApi.init("xajqnye", ["tp8myc5"], "https://web.archive.org/web/20210514233826/https://insight.adsrvr.org/track/up"); } });</script></body></html>