- Calico Cloud
- Cluster Security Score and Recommended Actions
Overview
Security teams responsible for securing cloud-native applications want to answer a simple question: “Is my application’s security posture getting better or worse over time?”. DevOps and platform teams require a clear prioritization of security-related actions to enhance application security within the cluster.
Calico Cloud is one of the first container security platform to take a holistic approach to security posture management by not only including vulnerability management and configuration assessments but also adding network security as an important part of security posture for cloud native applications as most threats end up communicating over the network. It not only does image vulnerability assessment, configuration assessment but also includes namespace isolation, egress controls to create cluster score and provide recommended actions.
Calico Cloud provides a view of the overall security posture of your Kubernetes clusters, a score for each namespace, and a prioritized list of recommended actions to improve your security score over time.
Benefits
Unified Network and Container Risk View
Maximize your cluster security posture score by taking recommended actions on high-impact security activities.
Prioritized Recommendations
Maximize your cluster security posture score by taking recommended actions on high-impact security activities.
Insights and Reporting
Get a report explaining the recommended action, affected resources, and how to fix the issue.
Capabilities
Cluster Security Score
Quantifies and measures the security posture of your Kubernetes cluster based using the following risk types:
- Namespace isolation
- Egress access
- High-risk images
- Control failures*
- * on the roadmap
Recommended Actions
Provides a prioritized list of actions to improve your cluster security score with remediation steps and impacted resources.
Recommended actions can be also be dismissed and re-enabled to customize scoring depending on the needs of each application deployment and lifecycle.
Security Overview and Insights
Provides historical trends and insights into cluster security and high-risk namespaces for the security team.
Get historical cluster score data for previous days on the graph.
How It Works
Learn more about how Cluster Security Score and Recommended Action works here.
