Luntry Container Security Solution

The main articles are:

• Security Information and Event Management (SIEM)
• IT containers

2024

Nova Container Platform Compatibility

CloudRan and Orion soft have confirmed the compatibility of the Luntry container security solution and the Nova Container Platform. Customers can share products to control risk across the entire lifecycle of container applications and reduce the time and resources required to configure and manage Kubernetes. This was announced by CloudRan on October 10, 2024.

The sharing of the Luntry and Nova Container Platform provides a high level of security for the container environment. IT can monitor Kubernetes resources, provide runtime protection, analyze access rights, and scan container images. Monitoring abnormal behavior in containers allows you to timely detect 1day, 0day, backdoors and APT threats, identify the root causes of incidents and failures.

Among Enterprise customers, we see a trend towards building a microservice architecture that helps significantly increase the speed and flexibility of development. The combination of Luntry and Nova Container Platform solutions will ensure the sustainability and security of IT systems with a microservice approach to creating digital services. Thanks to product compatibility, we can guarantee customers protection against current threats and the absence of "blind spots" in managing the container environment, "said Alexander Gavrilenko, head of technological partnerships and ecosystem solutions at Orion soft.

In the era of DevSecOps development and the active growth of microservice infrastructures, it is very important to effectively build interaction processes. Effective communication between team members such as DevOps engineers, developers, and security personnel is critical in securing the Kubernetes managed cluster. At the heart of our tool is the commitment to help companies protect container environments managed by Kubernetes throughout their lifecycle. Another important step for us was to confirm compatibility with the Nova Container Platform, "said Andrey Ganyushkin, Commercial Director of Luntry.

CIS Kubernetes benchmark support

In the second quarter of 2024, the Luntry solution received several significant updates. The developer announced this on July 17, 2024. The added functionality allows you to quickly close security issues when working with Kubernetes clusters, without creating obstacles to launching applications in production. In addition, the update makes it easier to work with incident investigation and checking clusters for compliance with standards.

One of the main updates is support for CIS Kubernetes benchmark to check the cluster for compliance with best practices. Luntry automates verification of 99% of the standard, while well-known Open Source solutions perform and describe at best 83% of checks.

Thanks to this, starting and diving into the safety of Kubernetes becomes easier and more controllable. It is with the compliance of the cluster with standards that it is easiest to start working with security settings.

Image scans in Image Registry appeared on a schedule: support for Docker, JFrog Artifactory, Harbor, Nexus, GitLab, Quay. Now in Luntry you can scan and analyze images along the entire life path: CI, Image Registry and Runtime. This allows you to notice problems and shortcomings in time and start working with them, plus automates the process and facilitates the work of security teams.

The next update regarding incident investigation is the addition of reactionary policies to runtime threats and their subsequent investigation. Now Luntry can automatically collect a dump of the file system and RAM of the container, stop the container. This allows you to automatically collect artifacts to investigate the incident and stop the development of the attack.

In addition, automatic generation of isolation network policy is available in the update. Now, making network microsegmentation even easier for applications increases network security and flexibility in development. Luntry prevents attackers from using disapproved links to move horizontally from a compromised application.

Added to the product is the signalless detection of new attacking tools in containers. Now SOC specialists will be able to accurately detect when an attacker begins to add and launch his tools without tying to signatures.

In this release, we have added functionality across all areas of Kubernetes security, allowing all teams to gain even more value from using Luntry in their infrastructures. It's nice that we managed to satisfy the needs of customers and surprise them with new advanced points that will greatly simplify the work on providing information security in Kubernetes clusters, - said Dmitry Evdokimov, technical director of Luntry.

Compatible with SteeringWheel

The Russian developer of the Laboratory Numerator and CloudRan software, the developer of the Luntry container security platform, tested the compatibility of their solutions. Now companies that choose the Steering Wheel platform from the Numerator Laboratory have an increased level of information security available within all Kubernetes clusters. This was announced on June 26, 2024 by representatives of the "Numerator Laboratory." Read more here.

Inclusion of Softline Universe services in the portfolio

Softline Group of Companies (PJSC Softline) on January 9, 2024 announced the start of a partnership with CloudRan LLC. With the Luntry platform, Softline Universe customers will be able to ensure reliable, uninterrupted operation of their services and manage their security without slowing down the production cycle.

The Luntry platform is a Russian solution for container protection and Kubernetes. It belongs to the class of Security Observability solutions and helps to increase the visibility of what is happening in Cloud-Native applications running the Kubernetes framework. The advantages of the product include: infrastructure without blind spots; an understandable and predictable environment; efficient communication between teams; Risk prioritization analysis; no potential for negative impact on infrastructure.

Softline Universe is an actively developing model for providing access to the ecosystem of applied integrated services, computing resources and infrastructure via the Internet. It allows you to quickly customize and scale your applications and services based on changing business requirements, thus reducing IT costs.

By including the product in the Softline Universe portfolio of services, our customers gained access to the event information security system. Luntry provides comprehensive protection across the entire lifecycle of container applications. In addition, the product is independent of import, which is relevant for many customers in the current situation, - commented Valentin Martynenko, information security architect of Softline Group of Companies.

We are pleased to announce the inclusion of the Luntry platform in Softline Universe. Cooperation with Softline will expand the capabilities of customers of both companies. For us, this is not only an opportunity to attract new customers, but also the potential for product development, "said Andrei Ganyushkin, Commercial Director of CloudRan LLC.

All products included in Softline Universe belong to the number of domestic developments and are included in state registers.

2023: Selectel Managed Kubernetes compatibility

Selectel on November 14, 2023 announced a partnership with Luntry. As part of the collaboration, the companies confirmed the compatibility of the Selectel Managed Kubernetes product with the Luntry solution. The software is available for installation as additional protection for Kubernetes clusters hosted on the Selectel infrastructure. Read more here.

2022: Compatible with the Kubernetes platform Deckhouse

The company Flant"" announced on November 18, 2022 that it Kubernetes platform Deckhouse was compatible Russian with the solution for. safety containers Luntry Compatibility was confirmed following tests conducted by engineers from  Flant and Luntry. Deckhouse users can now improve the security and visibility deployed in services Kubernetes.

Luntry allows you to observe the behavior of containers, find flaws, problems, failures and attacks in the infrastructure. Luntry continuously monitors the state of the K8s cluster. Thanks to this , employees of information security departments, DevSecOps, developers and QA engineers can see a complete picture of what is happening in the cluster.

The solution covers the entire process of development and operation in container environments, including features such as image security scanning and Kubernetes resources, runtime protection, network protection, and RBAC analysis. Starting with embedding in a CI/CD system, Luntry allows you to analyze the security of images based on open sources. The safety analysis can also be carried out in a completely closed loop.

Luntry is a set of containers that run on top of Deckhouse. The software is managed through a web interface and does not require deep knowledge of Kubernetes from the user.

For what you can use Luntry as part of Deckhouse:

• Strengthen the overall protection of Kubernetes clusters
• find the root causes of incidents: attacks, anomalies, incorrect configurations and code;
• build DevSecOps processes;
• assist SOC (security operations center);
• transfer information security functions to DevOps engineers, system administrators and developers; 
• implement the Zero Trust approach.

One of the features of Luntry is limited access to infrastructure. For example, the same Kubernetes API is read-only. That is, through Luntry in Kubernetes, nothing can be broken. 

Kubernetes is a complex solution that consists of many components. Using the standard Kubernetes tools, it is impossible to know exactly what is happening there, correctly and whether everything is safely configured, whether there is malicious activity in the cluster. Luntry just provides this opportunity - now to users of the Deckhouse platform, said Dmitry Evdokimov, CTO of Luntry.

Among the clients of Flant there are many companies with increased security requirements for Kubernetes clusters. Deckhouse has implemented basic protective equipment, but this is not always enough. With Luntry, the company offers a broader set of information security functions and close almost all of SOC and DevSecOps' container security needs. An additional plus of Luntry is that information security specialists who are familiar with Kubernetes only at the top level can work with it. Conversely: engineers and developers can solve information security problems with the help of Luntry, noted Artyom Kozhokin, Development Director of the Kubernetes platform Deckhouse.