Software Integrity Blog

Archive for the 'Container Security' Category

 

New Synopsys Polaris platform optimized for Red Hat OpenShift Container Platform

Open source is eating software, but Red Hat and Synopsys help you build and deploy containers more securely and at scale.

Continue Reading...

Posted in Container Security, Open Source Security | Comments Off on New Synopsys Polaris platform optimized for Red Hat OpenShift Container Platform

 

Announcing Black Duck OpsSight 2.2—Container security at scale 

With containers, we’ve changed the way we deploy applications. Now it’s time to change the way we secure them, with container scanning tools for open source.

Continue Reading...

Posted in Container Security, Open Source Security | Comments Off on Announcing Black Duck OpsSight 2.2—Container security at scale 

 

How to think about container security

Are you thinking about container security? Traditional application security isn’t meant for container deployments. Learn strategies for securing your containers.

Continue Reading...

Posted in Container Security | Comments Off on How to think about container security

 

Webinar: Secure your containers with GitHub and Synopsys

In our on-demand webinar with Bryan Cross (GitHub) and Dave Meurer (Synopsys), you’ll learn how to use integrated application security tools to secure containers at every layer.

Continue Reading...

Posted in Container Security, General, Open Source Security, Webinars | Comments Off on Webinar: Secure your containers with GitHub and Synopsys

 

Securing containers at scale

Open source is the foundation of most modern applications. However, left untracked, open source can put containerized applications at risk of known vulnerabilities such as Heartbleed and CVE-2017-5638 found in Apache Struts.

Continue Reading...

Posted in Container Security, Open Source Security, Software Composition Analysis | Comments Off on Securing containers at scale

 

Establishing technology trust at Infosecurity Europe 2018

Infosecurity Europe is one of the leading information security events in Europe. The annual event, taking place this year from 5-7 June, brings together over 19,500 information security professionals, over 400 exhibitors showcasing the most cutting edge information security solutions, and thought leaders from around the globe.

Continue Reading...

Posted in Container Security, General | Comments Off on Establishing technology trust at Infosecurity Europe 2018

 

OpsSight Container Security 2.0, Integrating SAST into DevSecOps, building hacker-proof voting

Black Duck by Synopsys announces OpsSight 2.0. Abbott strengthens pacemaker software against vulnerabilities. A year after disclosure, the Struts vulnerability is still a danger to thousands of companies. And the new Synopsys Security Mashup video is up.

Continue Reading...

Posted in Agile, CI/CD & DevOps, Container Security, Medical Device Security, Static Analysis (SAST) | Comments Off on OpsSight Container Security 2.0, Integrating SAST into DevSecOps, building hacker-proof voting

 

Announcing OpsSight Container Security 2.0 GA

Containers have restructured the way we think about our infrastructure, bringing development and operations teams closer together than ever before, and placing applications center stage in the infrastructure environment. Teams are massively scaling containerized deployments with Kubernetes and Kubernetes-based solutions, like Red Hat’s enterprise-grade container orchestration platform, OpenShift Container Platform. But in containerized deployments, because applications sit closer to the infrastructure, without an intervening hypervisor and host OS, application security is more important than ever. In fact, security remains among the most important barriers to container adoption. Black Duck by Synopsys fills a container security void Last November we announced the launch of our infrastructure security product, OpsSight, to bring open source visibility and control to operations teams managing large-scale container deployments with OpenShift and Kubernetes. OpsSight automatically scans every image, as it is used by the cluster, for open source and associated vulnerabilities. It then annotates the pod with metadata to highlight any policy violations. This information enables teams to ensure that vulnerable containers are not allowed to run in production. Finally, OpsSight continuously monitors for any newly reported vulnerabilities that may affect the contents of running containers, alerting teams so they can find and fix those vulnerabilities before a hacker might exploit them. In this solution, Black Duck by Synopsys created the first proactive security solution that could scale with the realities of containerized deployments. Container technology moves lightning fast The world of container orchestration and Kubernetes is rapidly changing. Recently, Red Hat released OpenShift Container Platform 3.9. In this latest release, Red Hat stepped up security and usability with a new central auditing capability, console timeouts, and improved service catalog workflows. Additionally, OpenShift can now preserve data across more environments, including PostgreSQL, MariaDB, and MySQL; it advances device plugin support and grows the types of local storage that are supported. Check out the OpenShift Commons Briefing on OpenShift Container Platform 3.9 for a full run-through. Enter OpsSight 2.0 Container Security solution Black Duck too has evolved our container security solution to meet the needs of our customers. Today we are announcing OpsSight 2.0. This new version has the same important security features as its older brother but has been re-architected to better scale and maintain support for the latest and greatest in container orchestration, like OpenShift Container Platform 3.9 and Kubernetes 1.10. OpsSight 2.0 also features:

Continue Reading...

Posted in Container Security, Open Source Security | Comments Off on Announcing OpsSight Container Security 2.0 GA

 

NIST report on container security, GitLab Developer Report, VW and Audi remote hacks

Software Integrity Insight is your resource on the cyber security and open source security that made the headlines!

Continue Reading...

Posted in Automotive Security, Container Security, Open Source Security | Comments Off on NIST report on container security, GitLab Developer Report, VW and Audi remote hacks

 

8 takeaways from NIST’s Application Container Security Guide

Companies are leveraging containers on a massive scale to rapidly package and deliver software applications. But because it is difficult for organizations to see the components and dependencies in all their container images, container security risks associated with containerized delivery has become a hot topic in DevOps. This puts the spotlight on operations teams to find security vulnerabilities in the production environment.

Continue Reading...

Posted in Agile, CI/CD & DevOps, Container Security | Comments Off on 8 takeaways from NIST’s Application Container Security Guide