Red Hat Advanced Cluster Security for Kubernetes
By Red Hat
Red Hat's Kubernetes-native security platform, built from its 2021 acquisition of StackRox, whose engine was subsequently open-sourced as the StackRox community project. Policy enforcement spans build, deploy, and runtime phases, with especially deep integration into OpenShift; sold self-managed or as a Red Hat-hosted cloud service.
Verified Source: 1
- Product type
- Software
- Deployment
- SaaSOn-premHybrid
- Organization size
- Mid-marketEnterprise
- Pricing tier
- $$
Capability checklist
How Red Hat Advanced Cluster Security for Kubernetes measures up against the full Container & Kubernetes Security taxonomy.
- Container image scanning — supported
- Scans container images for vulnerabilities and exposed secrets before deployment.
- Runtime threat detection — supported
- Detects anomalous process and system-call behavior in running containers.
- Kubernetes posture management (KSPM) — supported
- Flags misconfigured cluster settings, RBAC, and pod security policies.
- Admission control — supported
- Blocks noncompliant workloads from being deployed to the cluster in the first place.
- Runtime response actions — not supported
- Kills, isolates, or quarantines a compromised container or pod.
- Registry scanning — not supported
- Continuously rescans image registries for newly disclosed vulnerabilities.
Alternatives
Other Container & Kubernetes Security tools with overlapping capabilities, sized for similar teams.