Alauda Security Service
  • English

    • Introduction

    TOC

    What is Alauda Security Service?What Problems Does Alauda Security Service Solve?Limitations

    What is Alauda Security Service?

    Alauda Security Service is a security platform for Kubernetes and containerized environments. It provides centralized visibility, automated vulnerability scanning, and policy enforcement to help organizations secure workloads across multiple clusters.

    Alauda Security Service adopts a distributed, container-based architecture that consists of Central Services for management, API, and UI, and Secured Cluster Services for monitoring, policy enforcement, and data collection. It integrates with CI/CD pipelines, image registries, SIEM platforms, logging systems, and the built-in Scanner V4 vulnerability scanner.

    What Problems Does Alauda Security Service Solve?

    • Vulnerability Management: Alauda Security Service continuously scans container images and running workloads for known vulnerabilities and helps teams prioritize remediation.
    • Policy Enforcement: By defining and enforcing security policies, Alauda Security Service helps prevent high-risk deployments and enables timely response to runtime security incidents.
    • Centralized Visibility: It offers a unified portal for monitoring security events, vulnerability findings, and policy violations across all protected clusters.
    • Integration: Alauda Security Service integrates with CI/CD pipelines, image registries, and third-party tools to streamline security throughout the container lifecycle.

    Limitations

    • Scanner Compatibility: Scanner V4 is the default and only supported vulnerability scanner.
    • Deployment Constraints: Central Services must be deployed on a single cluster, and certain scanner components may only be deployed in specific namespaces or configurations.
    • Kubernetes Focus: Alauda Security Service is primarily designed for Kubernetes and Alauda Container Platform environments.
    • External Dependencies: Vulnerability data relies on external feeds (e.g., definitions.stackrox.io), and some integrations require additional configuration.
    • Resource Requirements: Running multiple components (Central, Sensor, Collector, Scanner) may require adequate cluster resources and network configuration.

    Alauda Security Service helps organizations manage risk, enforce best practices, and improve security in modern containerized environments.