Norwest Venture Partners led the latest round. The firm also led the $3.3 million seed round in December 2015.
So now that the startup has scored $14.5 million to develop its security platform, what will Aporeto’s product look like — and do?
It will include a commercialized version of Trireme, the company’s open source container security project. It will also have other security and management and operations tools. And it won’t be container-centric, Dimitri Stiliadis, co-founder and CEO of Aporeto, told SDxCentral.
Stiliadis, the former CTO of Nuage Networks, said Aporeto will deploy the product this summer.
As businesses increasingly adopt containers, miroservices, and serverless architecture, moving their services and applications to the cloud, “classic security based on the network, based on appliances, based on firewalls around the network doesn’t make sense anymore,” Stiliadis said.
That’s where Aporeto’s technology comes in. It’s a white-list approach, as opposed to the more traditional black list approach that tries to block certain actions from hackers. Aporeto’s method means the operator will specify which actions are permitted. Anything else gets blocked by default.
Last November the company open sourced a piece of this technology, a project called Trireme, that integrates with Kubernetes and Docker. It’s pronounced “Try-Reem” and it’s named after the Greek warships driven by a helmsman, or Kubernetes.
The new product will enable “end-to-end authentication, authorization, and encryption — the holy grail of security,” Stiliadis said. “The complete product is much bigger than Trireme. It will allow enterprises to operationalize security.”
Aporeto will release the security software both as a service, managed by Aporeto, as well as an on-premise offering. Customers can deploy the software in data centers, public or private clouds, or hybrid environments.
“By enabling this end-to-end security model, we allow a unified security posture, no matter where you are,” Stiliadis said.
Despite Trireme’s container-centric focus, the new product will support workloads built with containers using Kubernetes or Mesos, virtual machines using OpenStack, serverless architectures, and bare metal.
“The technology and the platform we are building applies equally to application containers using Docker and Kubernetes and also Linux technologies. The technology lives inside the virtual machine, so it can be deployed in a VMware environment, in AWS, in Google Cloud, whatever. We are bringing security very close to the workload,” Stiliadis said.