[UPDATE] Aviatrix Joins the Open Information Security Foundation (OISF) to Advance Open-Source Threat Detection Inside the Cloud

Article content

Investment in OISF Extends Aviatrix’s Containment Architecture with Suricata-Powered Detection – Making “Contain-Detect-Eliminate” a Unified Cloud Security Model Across AWS, Azure, and GCP

Article content

Santa Clara, CA, June 08, 2026 (GLOBE NEWSWIRE) — Aviatrix, pioneering the Cloud Native Security Fabric, the Containment Platform that limits Blast Radius at the workload, today announced that it has joined the Open Information Security Foundation (OISF) as a consortium member. Suricata, the open-source threat detection engine maintained by OISF, is embedded directly into the Aviatrix platform as its core Intrusion Prevention System. 
OISF stewards one of the most active threat-detection projects in the open-source security community. ​Suricata has drawn contributions from more than 300 developers and is in the top 2% of all project teams on Open Hub.  Unlike other open-source projects and security technologies, OISF is growing, innovating, and meeting the evolving demands in network security. It is supported by a global consortium of leading cloud, security, telecom, public-sector, and open-source security organizations. Its detection language and deployment model are recognized across modern cloud environments, including AWS, Azure, and Google Cloud. 
Through its support and participation in OISF, Aviatrix is committing engineering resources, detection rules, and multicloud reference architectures to Suricata. 
The announcement marks a critical milestone in the Containment Era, the third era of cybersecurity evolution defined by workload-level enforcement and Blast Radius as the primary metric. Aviatrix’s architecture shifts the focus from insufficient perimeter defenses to bounding the Blast Radius through Communication Governance at every workload. By joining OISF, Aviatrix is investing in the detection layer, powered by Suricata’s deep packet inspection and threat intelligence, which identifies malicious activity within contained boundaries, reducing the time between finding a threat and stopping it.   
Contain. Detect. Eliminate. 
Contain-Detect-Eliminate is Aviatrix’s operational security model for the Containment Era, reordering the traditional security cycle. Containment narrows the operational space an attacker can reach, bounding the Blast Radius the moment a compromise begins. Together, these three stages deliver a unified architecture, not a stack of disconnected tools.  
“In the Containment Era, the question is no longer whether attackers will land. It is what they can reach when they do,” said Chris McHenry, Chief Product Officer, Aviatrix. “Containment bounds the Blast Radius by enforcing policy at the workload, not at a chokepoint. Detection turns every bounded space into a forensic surface where threats have nowhere to hide. By committing engineers to Suricata, Aviatrix is investing in the entire cloud security community’s need to make Contain-Detect-Eliminate the default model, not the exception.” 
Suricata Inside the Aviatrix Platform 
Aviatrix has integrated Suricata as the core detection engine for its Intrusion Prevention System (IPS), operating inline on the data path across multicloud environments. Key capabilities include: 

Article content

Article content

Article content

Article content

Article content

Article content

Article content

Article content

As an OISF consortium member, Aviatrix is committing resources to advance Suricata for cloud-native environments. Planned contributions include: 

Article content

Article content

Article content

Article content

Article content

Through Aviatrix’s contributions, every Suricata user worldwide gains cloud-native detection rules, multicloud deployment patterns, and performance optimizations through the open-source project, which were capabilities previously confined to proprietary cloud security platforms. 
“Cloud-native environments represent where enterprise workloads run today, and closing the gap in Suricata’s coverage there benefits every deployment worldwide. Aviatrix’s commitment of engineering resources, multi-cloud reference architectures, and cloud-native detection rules moves that work into the open-source project where it belongs. We’re glad to welcome them to the OISF consortium. Aviatrix’s commitment reflects what we’re seeing more broadly; organizations recognizing that investing in open source is sound business strategy, not just good citizenship.”  Dr. Kelley Misata, President, OISF
Learn More 

Article content

Article content

Article content

Article content

About OISF 
The Open Information Security Foundation (OISF) is a nonprofit organization dedicated to building and sustaining Suricata, the high-performance open-source network threat detection engine used by Fortune 100 companies, government agencies, and critical infrastructure operators worldwide. Suricata functions as an intrusion detection system (IDS), intrusion prevention system (IPS), and Network Security Monitoring (NSM) engine. With more than 19,000 commits from 300+ contributors, 6,400+ GitHub stars, and 93 releases, Suricata is one of the most active and widely deployed open-source security projects in the world. OISF is sustained by a global consortium of organizations that fund OISF operations and Suricata development. Learn more at oisf.net.
About Aviatrix 
Aviatrix® is pioneering the Cloud Native Security Fabric, the architecture the Containment Era requires. The Cloud Native Security Fabric governs every workload communication path across every cloud, every VPC, every Kubernetes cluster, and every serverless function, from a single policy plane. One rule. Universal propagation. Enforced at the workload, not at a chokepoint. Trusted by more than 500 of the world’s leading enterprises. For more information, visit aviatrix.ai. 

Article content

 # # #

Article content

Article content

Article content

Article content

Article content

Article content

Article content