DISA Validates Security Technical Implementation Guide (STIG) for Mirantis Kubernetes Engine

Approved for usage by U.S. government and defense agencies

CAMPBELL, Calif., April 24 2024 – Mirantis, providing organizations with total control over their strategic infrastructure using open source software, today announced the Defense Information Systems Agency (DISA) has published and validated the Security Technical Implementation Guide (STIG) for Mirantis Kubernetes Engine (MKE) – also sold as Containers as a Service-Government (CAAS-G) in public sector markets.

This validation allows U.S. Government and specifically Department of Defense (DoD) military agencies to deploy and use MKE on DoD technology infrastructure, including for secure software supply chains. Future releases of MKE can be quickly validated, and the corresponding STIG updates published by Mirantis – working in cooperation with DISA, who maintains the model STIGs for upstream Kubernetes and the DevSecOps reference design for CNCF Kubernetes.

“The publication of the latest STIG for MKE, combined with our recent inclusion in the NatSec100 2023 List, allows users to deploy with the full confidence that they can meet the most stringent security standards and that Mirantis continues to be an innovator in delivering secure technology products for the most demanding implementations,” said Jason James, director of security, Mirantis.

STIG validation is a security review and configuration standard that helps ensure IT products and military agencies are complying with DoD security policies. DISA-approved STIGs are a critical way the agency works to safeguard DoD network resilience and protect government information systems from cybersecurity threats and malicious attacks by strengthening baseline security configurations. The STIG for MKE includes technical guidance for establishing a secure software supply chain using the platform.

By defining a tested reference configuration of MKE that meets DoD security requirements, the DISA STIG for MKE can speed and smooth the process of obtaining Authorization to Operate (ATO) for critical applications. Software innovators who want to achieve FedRAMP and other preliminary approvals on Kubernetes- or Swarm-hosted solutions, and speed up gaining ATO for specific implementations, will find it easier to work with MKE versus other Kubernetes platform solutions. They will also find it easier to collaborate with Mirantis, whose public sector expertise helps guarantee short turnaround times on adjustments needed to accommodate ATO requirements.

MKE (which evolved from Docker Enterprise/UCP) provides enterprises with the easiest, fastest, and most secure way to deploy cloud native applications at scale in any environment. It is the only enterprise container platform that provides a simple, complete cloud native experience and a central point of collaboration for developers and operations to build, run, and scale cloud native applications. MKE runs on bare metal, private, or public cloud infrastructure.

For further details, please read the DISA Releases Mirantis Kubernetes Engine STIG blog post.