Aqua Security Cloud Native Application Protection Platform

Protects your entire stack, on any cloud, across VMs, containers, and serverless

Solution Overview



Aqua Security enables Alibaba Cloud customers to securely build, scale and automate cloud native applications as well as ensure that controls, configurations and account settings across their environments conform to security best practices and compliance requirements.


Aqua facilitates security and DevOps collaboration for the cloud native journey, embeds security and assurance into Alibaba Cloud build and artifact pipelines, validates and remediates Alibaba Cloud infrastructure configurations, and protects workloads at runtime - including detecting malware, unauthorized changes to images, code injection and supply chain attacks.

Product Architecture

The Aqua Platform is the leading Cloud Native Application Protection Platform (CNAPP) and provides prevention, detection, and response automation across the entire application lifecycle to secure the supply chain, secure cloud infrastructure and secure running workloads wherever they are deployed.

Aqua customers are among the world’s largest enterprises in financial services, software, media, manufacturing and retail, with implementations across a broad range of cloud providers and modern technology stacks spanning containers, serverless functions and cloud VMs.

Highlight Architecture

With native support for a range of Alibaba Cloud compute, container and security services, the Aqua integrated platform provides contextual information that drives more effective security and risk mitigation as part of the shared responsibility model.

“Shift left” security into the CI/CD pipeline, get full visibility into the security posture of your pipeline and reduce the application attack surface before application deployment.

The Complete Cloud Native Security Platform

Accelerate development by detecting security issues in your artifacts early and shortening time to remediate.

Enforce compliance across the stack, gain real-time visibility and control over your security posture.

Protect applications in runtime using a zero-trust model, with granular controls that accurately detect and stop attacks.

Solution Highlight


  • Secure the Build

    Release and update software at DevOps speed with security automation. Detect vulnerabilities and malware early and fix them fast, and allow only safe artifacts to progress through your CI/CD pipeline.

    •Vulnerability Scanning
    •Dynamic Threat Analysis (DTA)
    •Automating DevSecOps
    •Supply Chain Security (Secure SBOM)

  • Secure the Infrastructure

    Deploy your cloud native applications on any infrastructure while ensuring that cloud services, orchestration and hosts are securely configured and in compliance.

    •Cloud Security Posture Management (CSPM)
    •Kubernetes Security Posture Management (KSPM)
    •Compliance and Risk: reporting and remediation
    •Admission Control and zero-trust enablement

  • Secure the Workloads

    Detect and block policy violations in your workloads using granular controls that are natively architected to provide the optimal response, at scale.

    •Container / Serverless / VM Security
    •Drift-prevention without profiling
    •Cloud Workload Protection (CWPP)
    •Cloud Native Detection and Response (CNDR)

Customer Reference

wave
phone Contact Us