{"id":22709118,"date":"2023-05-30T04:00:22","date_gmt":"2023-05-30T11:00:22","guid":{"rendered":"https:\/\/thenewstack.io\/?p=22709118"},"modified":"2023-05-26T08:34:01","modified_gmt":"2023-05-26T15:34:01","slug":"how-to-protect-containerized-workloads-at-runtime","status":"publish","type":"post","link":"https:\/\/thenewstack.io\/how-to-protect-containerized-workloads-at-runtime\/","title":{"rendered":"How to Protect Containerized Workloads at Runtime"},"content":{"rendered":"<!DOCTYPE html PUBLIC \"-\/\/W3C\/\/DTD HTML 4.0 Transitional\/\/EN\" \"http:\/\/www.w3.org\/TR\/REC-html40\/loose.dtd\">\n<html><body><p>Security is (finally) getting its due in the enterprise. Witness trends such as <a href=\"https:\/\/thenewstack.io\/ebooks\/devsecops\/best-of-devsecops-trends-in-cloud-native-security-practices\/\" class=\"local-link\">DevSecOps<\/a> and the <a href=\"https:\/\/thenewstack.io\/shift-left-where-cloud-native-computing-security-is-going\/\" class=\"local-link\">&ldquo;shift left&rdquo; approach<\/a> &mdash; meaning to move <a href=\"https:\/\/thenewstack.io\/security\/\" class=\"local-link\">security<\/a> as early as possible into development pipelines. But the work is never finished.<\/p>\n<p>Shift left and similar strategies are generally good things. They begin to address a long-overdue problem of treating security as a checkbox or a final step before deployment. But in many cases is still not quite enough for the realities of running modern software applications. The shift left approach might only cover the build and deploy phases, for example, but not apply enough security focus to another critical phase for today&rsquo;s workloads: runtime.<\/p>\n<p>Runtime security &ldquo;is about securing the environment in which an application is running and the application itself when the code is being executed,&rdquo; said <a href=\"https:\/\/in.linkedin.com\/in\/yugal-joshi-5740a92\" class=\"ext-link\" rel=\"external nofollow\" onclick=\"this.target=&#039;_blank&#039;;\">Yugal Joshi<\/a>, partner at the technology research firm Everest Group.<\/p>\n<p>The emerging class of tools and practices for security aim to address three essential security challenges in the age of containerized workloads, <a href=\"https:\/\/thenewstack.io\/kubernetes\/\" class=\"local-link\">Kubernetes,<\/a> and heavily automated <a href=\"https:\/\/thenewstack.io\/ci-cd\/\" class=\"local-link\">CI\/CD pipelines,<\/a> according to <a href=\"https:\/\/www.linkedin.com\/in\/ubhatt\/\" class=\"ext-link\" rel=\"external nofollow\" onclick=\"this.target=&#039;_blank&#039;;\">Utpal Bhatt,<\/a> CMO at <a href=\"https:\/\/tigera.io\/?utm_content=inline-mention\" class=\"ext-link\" target=\"_blank\" rel=\"external nofollow\" onclick=\"this.target=&#039;_blank&#039;;\">Tigera,<\/a>&nbsp;a security platform company.<\/p>\n<p>First, the speed and automation intrinsic to modern software development pipelines create more threat vectors and opportunities for vulnerabilities to enter a codebase.<\/p>\n<p>Second, the orchestration layer itself, like Kubernetes, also heavily automates the deployment of container images and introduces new risks.<\/p>\n<p>Third, the dynamic nature of running container-based workloads, especially when those workloads are decomposed into hundreds or thousands of microservices that might be talking to one another, <a href=\"https:\/\/thenewstack.io\/why-the-castle-and-moat-approach-to-security-is-obsolete\/\" class=\"local-link\">creates a very large and ever-changing attack surface.<\/a><\/p>\n<p>&ldquo;The threat vectors increase with these types of applications,&rdquo; Bhatt told The New Stack. &ldquo;It&rsquo;s virtually impossible to eliminate these threats when focusing on just one part of your supply chain.&rdquo;<\/p>\n<h2>Runtime Security: Prevention First<\/h2>\n<p>Runtime security might sound like a super-specific requirement or approach, but Bhatt and other experts note that, done right, holistic approaches to runtime security can bolster the security posture of the entire environment and organization.<\/p>\n<p>The overarching need for strong runtime security is to shift from a defensive or detection-focused approach to a prevention-focused approach.<\/p>\n<p>&ldquo;Given the large attack surface of containerized workloads, it&rsquo;s impossible to scale a detection-centric approach to security,&rdquo; said <a href=\"https:\/\/www.linkedin.com\/in\/mikheil-kardenakhishvili-418199121\" class=\"ext-link\" rel=\"external nofollow\" onclick=\"this.target=&#039;_blank&#039;;\">Mikheil Kardenakhishvili,<\/a> CEO and co-founder of Techseed, one of Tigera&rsquo;s partners. &ldquo;Instead, focusing on prevention will help to reduce attacks and subsequently the burden on security teams.&rdquo;<\/p>\n<p>Instead of a purely detection-based approach, one that often <a href=\"https:\/\/thenewstack.io\/preventing-developer-burnout-in-the-age-of-rapid-software-delivery\/\" class=\"local-link\">burns out security teams<\/a> and puts them in the position of being seen as bottlenecks or inhibitors by the rest of the business, the best runtime security tools and practices, according to Bhatt, implement a prevention-first approach backed by traditional detection response.<\/p>\n<p>&ldquo;Runtime security done right means you&rsquo;re blocking known attacks rather than waiting for them to happen,&rdquo; Bhatt said.<\/p>\n\n<div class=\"tns-sponsor-note\">\n\t<div class=\"sponsor-note-profile\" data-url=\"https:\/\/tigera.io\/?utm_content=sponsormodule\" data-sponsor=\"tigera\">\n\t\t<div class=\"row\">\n\t\t\t<div class=\"col col-40 sponsor-note-logo\">\n\t            <a href=\"https:\/\/tigera.io\/?utm_content=sponsormodule\" class=\"sponsor-note-logo-link\" target=\"_blank\">\n\t\t\t\t\t<span><img src=\"https:\/\/cdn.thenewstack.io\/media\/7f0a5f52-tigera_logo_horizontal.svg\" width=\"125\" height=\"30\" alt=\"\"><\/span>\n\t            <\/a>\n\t\t\t<\/div>\n\t\t<\/div>\n\t\t<div class=\"row\">\n\t\t\t<div class=\"col sponsor-note-content\">\n\t\t\t\t\nTigera provides the industry&rsquo;s only active security platform with full-stack observability for containers and Kubernetes. Tigera&rsquo;s platform, delivered as a fully-managed SaaS or self-managed service, prevents, detects, troubleshoots, and automatically mitigates exposure risks of security breaches.\n\n\t\t\t<\/div>\n\t\t<\/div>\n\t\t<div class=\"row\">\n\t\t\t<div class=\"col sponsor-note-cta\">\n\t\t\t\tLearn More<svg xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"23.012\" height=\"17.268\" viewBox=\"0 0 23.012 17.268\">\n  <path id=\"Path_340\" data-name=\"Path 340\" d=\"M14.36,0,12.816,1.508l6.067,6.067H0V9.729H18.884l-6.031,6.032L14.4,17.268l8.616-8.616Z\" transform=\"translate(0 0)\"\/>\n<\/svg>\n\t\t\t<\/div>\n\t\t<\/div>\n\t<\/div>\n\n\t<div class=\"sponsor-note-rss\" data-sponsor=\"tigera\">\n\t\t<div class=\"sponsor-note-rss-heading\">\n\t\t\tThe latest from Tigera\t\t<\/div>\n\t\t<div\n\t\t\tclass=\"sponsor-note-rss-items sponsor-note-rss-items-tigera\"\n\t\t\tdata-sponsor=\"tigera\"\n\t\t><\/div>\n\t\t<script>\n\t\t\t$(document).ready(function() {\n\t\t\t\t$.ajax({\n\t\t\t\t\tmethod: 'POST',\n\t\t\t\t\turl: '\/no-cache\/sponsors-rss-block\/',\n\t\t\t\t\theaders: {\n\t\t\t\t\t\t'Cache-Control': 'no-cache, no-store, must-revalidate',\n\t\t\t\t\t\t'Pragma': 'no-cache',\n\t\t\t\t\t\t'Expires': '0'\n\t\t\t\t\t},\n\t\t\t\t\tdata : {\n\t\t\t\t\t\tsponsorSlug : 'tigera',\n\t\t\t\t\t\tnumItems : 3\n\t\t\t\t\t},\n\t\t\t\t\tsuccess : function(data) {\n\t\t\t\t\t\tif (data.startsWith('ERROR')) {\n\t\t\t\t\t\t\tconsole.log(data);\n\t\t\t\t\t\t\t$('.sponsor-note-rss').hide();\n\t\t\t\t\t\t} else {\n\t\t\t\t\t\t\t$('.sponsor-note-rss-items-tigera').append(data);\n\t\t\t\t\t\t}\n\t\t\t\t\t}\n\t\t\t\t});\n\t\t\t});\n\t\t<\/script>\n\t<\/div>\n<\/div>\n\n\n<p>Runtime security can provide common services as a platform offering that any application can use for secure execution, noted Joshi, the Everest Group analyst.<\/p>\n<p>&ldquo;Therefore, things like identity, monitoring, logging, permissions, and control will fall under this runtime security remit,&rdquo; he said. &ldquo;In general, it should also provide an incident-response mechanism through prioritization of vulnerability based on criticality and frequency. Runtime security should also ideally secure the environment, storage, network and related libraries that the application needs to use to run.&rdquo;<\/p>\n<h2>A SaaS Solution for Runtime Security<\/h2>\n<p>Put in more colloquial terms: Runtime security means securing all of the things commonly found in modern software applications and environments.<\/p>\n<p>The prevention-first, holistic approach is part of the DNA of <a href=\"https:\/\/docs.tigera.io\/calico\/latest\/about\" class=\"ext-link\" rel=\"external nofollow\" onclick=\"this.target=&#039;_blank&#039;;\">Calico Open Source<\/a>, an open source networking and network security project for containers, virtual machines, and native host-based workloads, as well as Calico Cloud and Calico Enterprise, the latter of which is Tigera&rsquo;s commercial platform built on the open source project it created.<\/p>\n<p>Calico Cloud, a Software as a service (SaaS) solution focused on cloud native apps running in <a href=\"https:\/\/thenewstack.io\/containers\/\" class=\"local-link\">containers<\/a> with Kubernetes, offers security posture management, robust runtime security for identifying known threats, and threat-hunting capabilities for discovering Zero Day attacks and other previously unknown threats.<\/p>\n<p>These four components of Calico &mdash; securing your posture in a Kubernetes-centric way, protecting your environment from known attackers, detecting Zero Day attacks, and incident response\/risk mitigation &mdash; also speak to four fundamentals for any high-performing runtime security program, according to Bhatt.<\/p>\n<p>Following are the four principles to follow for protecting your runtime.<\/p>\n<h2>4 Keys to Doing Runtime Security Right<\/h2>\n<p><strong>1. Protect your applications from known threats.<\/strong> This is core to the prevention-first mindset, and focuses on ingesting reliable threat feeds that your tool(s) continuously check against &mdash; not just during build and deploy but during runtime as well.<br>\nExamples of popular, industry-standards feeds include network addresses of known malicious servers, process file hashes of known malware, and the <a href=\"https:\/\/owasp.org\/www-project-top-ten\/\" class=\"ext-link\" rel=\"external nofollow\" onclick=\"this.target=&#039;_blank&#039;;\">OWASP Top 10<\/a> project.<\/p>\n<p><strong>2. Protect your workloads from vulnerabilities in the containers.<\/strong> In addition to checking against known, active attack methods, runtime security to proactively protect against vulnerabilities in the container itself &mdash; and everything that the container needs to run, including the environment.<\/p>\n<p>This isn&rsquo;t a &ldquo;check once&rdquo; type of test, but a virtuous feedback loop that should include enabling security policies that protect workloads from any vulnerabilities, including limiting communication or traffic between services that aren&rsquo;t known\/trusted or when a risk is detected.<\/p>\n<p><strong>3. Detect and protect against container and network anomalous behaviors.<\/strong> This is &ldquo;the glamorous part&rdquo; of runtime security, according to Bhatt, because it enables security teams to find and mitigate suspicious behavior in the environment even when it&rsquo;s not associated with a known threat, such as with Zero Day attacks.<\/p>\n<p>Runtime security tools should be able to detect anomalous behavior in container or network activity and alert security operations teams (via integration with security information and event management, or SIEM, tools) to investigate and mitigate as needed.<\/p>\n<p><strong>4. Assume breaches have occurred; be ready with incident response and risk mitigation.<\/strong> Lastly, even while shifting to a prevention-first, detection-second approach, Bhatt said runtime security done right requires a fundamental assumption that your runtime has already been compromised (and will occur again). This means your organization is ready to act quickly in the event of an incident and minimize the potential fallout in the process.<\/p>\n<p><a href=\"https:\/\/thenewstack.io\/what-is-zero-trust-security\/\" class=\"local-link\">Zero trust<\/a> is also considered a best strategy for runtime security tools and policies, according to Bhatt.<\/p>\n<p>The bottom line: The perimeter-centric, detect-and-defend mindset is no longer enough, even if some of its practices are still plenty valid. As Bhatt told The New Stack: &ldquo;The world of containers and Kubernetes requires a different kind of security posture.&rdquo;<\/p>\n<p>Runtime security tools and practices exist to address the much larger and more dynamic threat surface created by containerized environments. Bhatt loosely compared today&rsquo;s software environments to large houses with lots of doors and windows. Legacy security approaches might only focus on the front and back door. Runtime security attempts to protect the whole house.<\/p>\n<p>Bhatt finished the metaphor: &ldquo;Would you rather have 10 locks on one door, or one lock on every door?&rdquo;<\/p>\n<\/body><\/html>\n","protected":false},"excerpt":{"rendered":"<p>Security is (finally) getting its due in the enterprise. Witness trends such as DevSecOps and the &ldquo;shift left&rdquo; approach &mdash;<\/p>\n","protected":false},"author":1601,"featured_media":22709135,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"inline_featured_image":false},"categories":[10054,9985,12743,10056],"tags":[12197,12275],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO Premium plugin v19.5 (Yoast SEO v19.11) - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>How to Protect Containerized Workloads at Runtime - The New Stack<\/title>\n<meta name=\"description\" content=\"When done right, holistic approaches to runtime security can bolster the security posture of the entire environment and organization.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/thenewstack.io\/how-to-protect-containerized-workloads-at-runtime\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"How to Protect Containerized Workloads at Runtime\" \/>\n<meta property=\"og:description\" content=\"When done right, holistic approaches to runtime security can bolster the security posture of the entire environment and organization.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/thenewstack.io\/how-to-protect-containerized-workloads-at-runtime\/\" \/>\n<meta property=\"og:site_name\" content=\"The New Stack\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/thenewstack\" \/>\n<meta property=\"article:published_time\" content=\"2023-05-30T11:00:22+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2023-05-26T15:34:01+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/cdn.thenewstack.io\/media\/2023\/05\/f0895996-containers-runtime-1.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"1200\" \/>\n\t<meta property=\"og:image:height\" content=\"675\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"Kevin Casey\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@thenewstack\" \/>\n<meta name=\"twitter:site\" content=\"@thenewstack\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Kevin Casey\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"6 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"NewsArticle\",\"@id\":\"https:\/\/thenewstack.io\/how-to-protect-containerized-workloads-at-runtime\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/thenewstack.io\/how-to-protect-containerized-workloads-at-runtime\/\"},\"author\":{\"name\":\"Kevin Casey\",\"@id\":\"https:\/\/thenewstack.io\/#\/schema\/person\/17705e960ba0790d26f6802f077f2ade\"},\"headline\":\"How to Protect Containerized Workloads at Runtime\",\"datePublished\":\"2023-05-30T11:00:22+00:00\",\"dateModified\":\"2023-05-26T15:34:01+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/thenewstack.io\/how-to-protect-containerized-workloads-at-runtime\/\"},\"wordCount\":1180,\"publisher\":{\"@id\":\"https:\/\/thenewstack.io\/#organization\"},\"keywords\":[\"sponsor-tigera\",\"sponsored-post\"],\"articleSection\":[\"Containers\",\"Kubernetes\",\"Operations\",\"Security\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/thenewstack.io\/how-to-protect-containerized-workloads-at-runtime\/\",\"url\":\"https:\/\/thenewstack.io\/how-to-protect-containerized-workloads-at-runtime\/\",\"name\":\"How to Protect Containerized Workloads at Runtime - The New Stack\",\"isPartOf\":{\"@id\":\"https:\/\/thenewstack.io\/#website\"},\"datePublished\":\"2023-05-30T11:00:22+00:00\",\"dateModified\":\"2023-05-26T15:34:01+00:00\",\"description\":\"When done right, holistic approaches to runtime security can bolster the security posture of the entire environment and organization.\",\"breadcrumb\":{\"@id\":\"https:\/\/thenewstack.io\/how-to-protect-containerized-workloads-at-runtime\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/thenewstack.io\/how-to-protect-containerized-workloads-at-runtime\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/thenewstack.io\/how-to-protect-containerized-workloads-at-runtime\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/thenewstack.io\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"How to Protect Containerized Workloads at Runtime\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/thenewstack.io\/#website\",\"url\":\"https:\/\/thenewstack.io\/\",\"name\":\"The New Stack\",\"description\":\"\",\"publisher\":{\"@id\":\"https:\/\/thenewstack.io\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/thenewstack.io\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/thenewstack.io\/#organization\",\"name\":\"The New Stack\",\"url\":\"https:\/\/thenewstack.io\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/thenewstack.io\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/cdn.thenewstack.io\/media\/2021\/11\/a9fbec84-the-new-stack-logo-rgb-screen.png\",\"contentUrl\":\"https:\/\/cdn.thenewstack.io\/media\/2021\/11\/a9fbec84-the-new-stack-logo-rgb-screen.png\",\"width\":1032,\"height\":128,\"caption\":\"The New Stack\"},\"image\":{\"@id\":\"https:\/\/thenewstack.io\/#\/schema\/logo\/image\/\"},\"sameAs\":[\"https:\/\/www.facebook.com\/thenewstack\",\"https:\/\/twitter.com\/thenewstack\"]},{\"@type\":\"Person\",\"@id\":\"https:\/\/thenewstack.io\/#\/schema\/person\/17705e960ba0790d26f6802f077f2ade\",\"name\":\"Kevin Casey\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/thenewstack.io\/#\/schema\/person\/image\/9d71cb7b99e51daaee75bcb16f309848\",\"url\":\"https:\/\/thenewstack.io\/wp-content\/uploads\/2021\/08\/73da67b7-kc-96x96.jpg\",\"contentUrl\":\"https:\/\/thenewstack.io\/wp-content\/uploads\/2021\/08\/73da67b7-kc-96x96.jpg\",\"caption\":\"Kevin Casey\"},\"description\":\"Kevin Casey is an award-winning technology and business writer whose work appears regularly in The Enterprisers Project and other outlets. He writes regularly about all things IT, including security, cloud, and software development. He teaches writing at Duke University. Find him on Twitter and LinkedIn.\",\"sameAs\":[\"https:\/\/www.linkedin.com\/in\/kevincasey\/\"],\"url\":\"https:\/\/thenewstack.io\/author\/kevincasey\/\"}]}<\/script>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"How to Protect Containerized Workloads at Runtime - The New Stack","description":"When done right, holistic approaches to runtime security can bolster the security posture of the entire environment and organization.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/thenewstack.io\/how-to-protect-containerized-workloads-at-runtime\/","og_locale":"en_US","og_type":"article","og_title":"How to Protect Containerized Workloads at Runtime","og_description":"When done right, holistic approaches to runtime security can bolster the security posture of the entire environment and organization.","og_url":"https:\/\/thenewstack.io\/how-to-protect-containerized-workloads-at-runtime\/","og_site_name":"The New Stack","article_publisher":"https:\/\/www.facebook.com\/thenewstack","article_published_time":"2023-05-30T11:00:22+00:00","article_modified_time":"2023-05-26T15:34:01+00:00","og_image":[{"width":1200,"height":675,"url":"https:\/\/cdn.thenewstack.io\/media\/2023\/05\/f0895996-containers-runtime-1.jpg","type":"image\/jpeg"}],"author":"Kevin Casey","twitter_card":"summary_large_image","twitter_creator":"@thenewstack","twitter_site":"@thenewstack","twitter_misc":{"Written by":"Kevin Casey","Est. reading time":"6 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"NewsArticle","@id":"https:\/\/thenewstack.io\/how-to-protect-containerized-workloads-at-runtime\/#article","isPartOf":{"@id":"https:\/\/thenewstack.io\/how-to-protect-containerized-workloads-at-runtime\/"},"author":{"name":"Kevin Casey","@id":"https:\/\/thenewstack.io\/#\/schema\/person\/17705e960ba0790d26f6802f077f2ade"},"headline":"How to Protect Containerized Workloads at Runtime","datePublished":"2023-05-30T11:00:22+00:00","dateModified":"2023-05-26T15:34:01+00:00","mainEntityOfPage":{"@id":"https:\/\/thenewstack.io\/how-to-protect-containerized-workloads-at-runtime\/"},"wordCount":1180,"publisher":{"@id":"https:\/\/thenewstack.io\/#organization"},"keywords":["sponsor-tigera","sponsored-post"],"articleSection":["Containers","Kubernetes","Operations","Security"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/thenewstack.io\/how-to-protect-containerized-workloads-at-runtime\/","url":"https:\/\/thenewstack.io\/how-to-protect-containerized-workloads-at-runtime\/","name":"How to Protect Containerized Workloads at Runtime - The New Stack","isPartOf":{"@id":"https:\/\/thenewstack.io\/#website"},"datePublished":"2023-05-30T11:00:22+00:00","dateModified":"2023-05-26T15:34:01+00:00","description":"When done right, holistic approaches to runtime security can bolster the security posture of the entire environment and organization.","breadcrumb":{"@id":"https:\/\/thenewstack.io\/how-to-protect-containerized-workloads-at-runtime\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/thenewstack.io\/how-to-protect-containerized-workloads-at-runtime\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/thenewstack.io\/how-to-protect-containerized-workloads-at-runtime\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/thenewstack.io\/"},{"@type":"ListItem","position":2,"name":"How to Protect Containerized Workloads at Runtime"}]},{"@type":"WebSite","@id":"https:\/\/thenewstack.io\/#website","url":"https:\/\/thenewstack.io\/","name":"The New Stack","description":"","publisher":{"@id":"https:\/\/thenewstack.io\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/thenewstack.io\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/thenewstack.io\/#organization","name":"The New Stack","url":"https:\/\/thenewstack.io\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/thenewstack.io\/#\/schema\/logo\/image\/","url":"https:\/\/cdn.thenewstack.io\/media\/2021\/11\/a9fbec84-the-new-stack-logo-rgb-screen.png","contentUrl":"https:\/\/cdn.thenewstack.io\/media\/2021\/11\/a9fbec84-the-new-stack-logo-rgb-screen.png","width":1032,"height":128,"caption":"The New Stack"},"image":{"@id":"https:\/\/thenewstack.io\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.facebook.com\/thenewstack","https:\/\/twitter.com\/thenewstack"]},{"@type":"Person","@id":"https:\/\/thenewstack.io\/#\/schema\/person\/17705e960ba0790d26f6802f077f2ade","name":"Kevin Casey","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/thenewstack.io\/#\/schema\/person\/image\/9d71cb7b99e51daaee75bcb16f309848","url":"https:\/\/thenewstack.io\/wp-content\/uploads\/2021\/08\/73da67b7-kc-96x96.jpg","contentUrl":"https:\/\/thenewstack.io\/wp-content\/uploads\/2021\/08\/73da67b7-kc-96x96.jpg","caption":"Kevin Casey"},"description":"Kevin Casey is an award-winning technology and business writer whose work appears regularly in The Enterprisers Project and other outlets. He writes regularly about all things IT, including security, cloud, and software development. He teaches writing at Duke University. Find him on Twitter and LinkedIn.","sameAs":["https:\/\/www.linkedin.com\/in\/kevincasey\/"],"url":"https:\/\/thenewstack.io\/author\/kevincasey\/"}]}},"_links":{"self":[{"href":"https:\/\/thenewstack.io\/wp-json\/wp\/v2\/posts\/22709118"}],"collection":[{"href":"https:\/\/thenewstack.io\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/thenewstack.io\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/thenewstack.io\/wp-json\/wp\/v2\/users\/1601"}],"replies":[{"embeddable":true,"href":"https:\/\/thenewstack.io\/wp-json\/wp\/v2\/comments?post=22709118"}],"version-history":[{"count":7,"href":"https:\/\/thenewstack.io\/wp-json\/wp\/v2\/posts\/22709118\/revisions"}],"predecessor-version":[{"id":22709369,"href":"https:\/\/thenewstack.io\/wp-json\/wp\/v2\/posts\/22709118\/revisions\/22709369"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/thenewstack.io\/wp-json\/wp\/v2\/media\/22709135"}],"wp:attachment":[{"href":"https:\/\/thenewstack.io\/wp-json\/wp\/v2\/media?parent=22709118"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/thenewstack.io\/wp-json\/wp\/v2\/categories?post=22709118"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/thenewstack.io\/wp-json\/wp\/v2\/tags?post=22709118"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}