Kubernetes is the leading container orchestration platform, easing large-scale management of containers. Deepfence provides deterministic application security for pods in production.
Deepfence is a sidecar pod that protects other pods by analyzing the network traffic and integrity of file systems, running processes, and also flags anomalies in resource access patterns in those pods. Deepfence works out of the box on managed kubernetes solutions like Amazon EKS, Google GKE and Openshift.
Istio as a sidecar proxy provides service identity, policy enforcement, ACL’s and traffic manageability. Deepfence is deployed as an out-of-band sidecar that passively analyzes the network traffic and system changes to protect against complex multi-vector, multi-stage attacks.