Transforming Network Infrastructure Industry News

TMCNet:  Deepfence announces support for securing workloads running in AWS Fargate

[April 13, 2018]

Deepfence announces support for securing workloads running in AWS Fargate

SAN FRANCISCO, April 13, 2018 (GLOBE NEWSWIRE) -- Deepfence ( today announced support for securing workloads running in AWS Fargate. Deepfence came out of stealth in February 2018 and takes an application centric approach to container security. Deepfence secures the ‘inner attack surface’ of containers by protecting against complex multi-stage and multi-vector attacks.

Launched in Nov 2017, AWS Fargate represents serverless paradigm built purely using containers, therefore an enterprise no longer has to provision, configure, and scale clusters of virtual machines to run containers. Serverless paradigms like AWS Fargate built using containers essentially offload management of underlying server infrastructure to cloud service providers.

One issue that users have previously faced is that AWS Fargate does not allow elevated capabilities or privileged mode for its containers, essentially rendering most of the existing container security tools un-usable. This is where Deepfence comes in.

Deepfence’s ‘Security As a Microservice’ solution is dployed as a sidecar container when users manage their virtual machine or container based infrastructure.

“In the case of Fargate, where users do not have access to underlying infrastructure, Deepfence gets deployed as a pico-process which runs along with user’s workloads as part of the same execution unit,” said Sandeep Lahane, Deepfence’s Founder and CEO. “This pico-process is injected as part of CI/CD and is built into the container image. This is an additional way to deploy Deepfence’s semantic patching technology and with this release we protect container workloads on both managed and unmanaged infrastructures.”

Deepfence technology is different than its competitors because it does not employ third party kernel modules, library level system call interception or in-line proxies. Rather, the whole stack is built in user space in a memory safe manner; this is especially important as container security tools are supposed to get deployed on production infrastructure where users might or might not have access to underlying infrastructure like in the case of Fargate.

“A vulnerable version of Apache Struts is equally vulnerable even when it is running on Fargate and can lead to integrity breaches,” Lahane added. “Traditional security apparatus is not sufficient for these new paradigms. Weaving security in as part of applications is the only way to secure modern applications in a portable manner.”

Deepfence support for AWS Fargate is available for private beta and a free trial can be requested on their website. Deepfence team will be demonstrating AWS Fargate support at the RSA Early Stage Expo 2018 at booth #9.

About Deepfence
Deepfence was founded in 2016 with a mission to bring fundamental advances to the field of application security. Rather than shoehorn conventional security measures for modern paradigms, Deepfence builds a superior approach from the ground up. The company’s ‘Security as a Microservice’ solution radically changes the way containers and cloud workloads are protected, and is native to the modern application and infrastructure paradigms. Deepfence team brings together deep expertise in the areas of application and network security, program analysis, machine learning, virtualization, and networking, with years of experience in industry and academia. To learn more, please visit

Media Contact:

[ Back To Transforming Network Infrastructure's Homepage ]

Click here to share your opinion – Would color of equipment influence your purchasing decision, one way or another?

Featured Blog Entries

Day 4, Cisco Live! - The Wrap

Day 4 was the final day of our first ever Cisco Live! We had a great show, with many great conversations and new connections with existing and potential end users, resellers, partners and job hunters.

Day 3, Cisco Live!

Day 3 of Cisco Live is history! For Fiber Mountain, we continued to enjoy visits from decision makers and influencers who were eager to share their data center and structured cabling challenges.

Day 2, Cisco Live!

Tuesday was Day 2 of Cisco Live for Fiber Mountain and we continued to experience high levels of traffic, with many high value decision makers and influencers visiting our booth. One very interesting difference from most conferences I attend is that there are no titles on anyone's show badges. This allows open conversations without people being pretentious. I think this is a very good idea.

Day 1, Cisco Live!

Fiber Mountain is exhibiting at Cisco Live! In Las Vegas for the first time ever! Our first day was hugely successful from just about any perspective - from quantity and quality of booth visitors to successful meetings with customers.

Industry News