Multi-Cloud and Legacy
Security that Spans Multiple Clouds and Legacy Systems
Many organizations are rearchitecting and modernizing their traditional applications, to adopt agile methodologies and release value to end users faster. Modernization is an incremental process that can take years, leaving some of the application’s dependencies on-premises while the modernized components are running on modern infrastructure or on the cloud. Each type of environment and cloud utilizes a different security model, making it difficult and time consuming to secure and monitor.
Tigera Secure supports both legacy and cloud-based environments. Tigera abstracts the underlying security model of each environment and cloud provider, preventing lock-in and enabling workload portability.
When migrating from your data center to the cloud, applications are generally migrated incrementally and in priority order. This process can take multiple years, resulting in an application with communication that must be secured between the data center and across multiple cloud providers.
Tigera Secure supports data center hosts, vms, multiple orchestrators and all major cloud providers. Tigera security policies abstract the underlying security implementation of each environment and are dynamically enforced, enabling the freedom to move any workload from the data center to a cloud provider or from one cloud provider to another without the need to redefine security policies.
Cloud lock-in is a concern for many organizations, and often applications are architected to be cloud-agnostic to allow for portability. Security and compliance monitoring is not portable across clouds and generally requires different approaches and complex security architecture.
Tigera Secure abstracts the underling cloud security model and offers a universal security policy definition that works and federates across clouds without the need to update policies as workloads are migrated between clouds.
Security Controls Between Pods and External Resources
Kubernetes workloads often need to connect to resources outside of the cluster; such as VMs, bare metal, databases, and cloud-native services. When using traditional firewalls or cloud-native security groups, the only way to enable access to external resources has been to allow the entire cluster access. Tigera Secure provides fine-grained policy control between individual pods and external resources.