DevOps

CloudCasa - How to Deploy CloudCasa on a Rafay Managed Cluster

Jan 19, 2022 By CloudCasa In CloudCasa

With Rafay and CloudCasa, enterprises can manage and protect Kubernetes distributions and immediately gain centralized automation, security, visibility, data protection and governance capabilities for Kubernetes and application lifecycle management – across public clouds such as AWS, Azure and GCP.

View Video

CloudCasa

Read more about CloudCasa - How to Deploy CloudCasa on a Rafay Managed Cluster

Enabling policy as code (PaC) with OPA and Rego

Jan 19, 2022 By Eric Smalling In Snyk

The Cambridge Dictionary defines a policy as: “a set of ideas or a plan of what to do in particular situations that has been agreed to officially by a group of people, a business organization, a government, or a political party.” And in the context of software development, your organization may have some rules about how a policy is built, configured, deployed, and used. Some examples of software policies include.

Read Post

Snyk

Read more about Enabling policy as code (PaC) with OPA and Rego

Securing a World of Physically Capable Computers with Bruce Schneier

Jan 19, 2022 By Teleport In Teleport

Computer security is no longer about data; it's about life and property. This change makes an enormous difference, and will shake up our industry in many ways. First, data authentication and integrity will become more important than confidentiality. And second, our largely regulation-free Internet will become a thing of the past.

View Video

Teleport

Read more about Securing a World of Physically Capable Computers with Bruce Schneier

Using Z3 Theorem Prover to analyze RBAC

Jan 19, 2022 By Andrew Helwer In Teleport

Z3 is a satisfiability modulo theories (SMT) solver developed by Microsoft Research. With a description like that, you’d expect it to be restricted to esoteric corners of the computerized mathematics world, but it has made impressive inroads addressing conventional software engineering needs: analyzing network ACLs and firewalls in Microsoft Azure, for example.

Read Post

Teleport

Read more about Using Z3 Theorem Prover to analyze RBAC

Continuously Securing Software Supply Chain

Jan 19, 2022 By JFrog In JFrog

Catch this session to see a breakdown of the recent news related to software supply chain security and what you can do to meet new requirements and protect your software from such attacks. With new software supply chain attacks reaching the spotlight at an accelerating pace, security research uncovering novel attack methods and new mandates and guidelines starting to come into effect — it can be hard to stay on top of the latest developments and their implications.

View Video

JFrog

Read more about Continuously Securing Software Supply Chain

The Big Fix 2022 - Getting Started Guide

Jan 18, 2022 By Snyk In Snyk

The Big Fix brings together developers, DevOps, and security practitioners of all skill levels to help make the internet more secure. Our goal is to make security 100x better in 2022 by finding and fixing 202,200 security vulnerabilities! Join us to help find (and fix!) security vulnerabilities while making friends and winning swag. In this short video we'll help you get started finding (and fixing!) security vulnerabilities in your applications -- it's easy!

View Video

Snyk

Read more about The Big Fix 2022 - Getting Started Guide

Live Hacking: Find Vulnerabilities in Your Apps Before Hackers Do

Jan 18, 2022 By Snyk In Snyk

As cloud-native technologies disrupt the Application Security (AppSec) market, forward-thinking enterprises are shifting their security to the left. A range of cutting-edge security platforms is now available, empowering developers to build secure applications within the development process. But what do secure applications look like, and why does it matter? Why are enterprises implementing security during the deployment phase?

View Video

Snyk

Read more about Live Hacking: Find Vulnerabilities in Your Apps Before Hackers Do

Identity-Based Access for SSH

Jan 18, 2022 By Rupert Hogan In Teleport

Lack of access accountability and unmonitored access create a considerable security risk for organizations, and the best way to mitigate this challenge is by implementing identity-based access.

Read Post

Teleport

Read more about Identity-Based Access for SSH

Snyk Code scanning added to the Snyk Visual Studio extension

Jan 18, 2022 By Frank Fischer In Snyk

Snyk Code provides a new generation of static application security testing (SAST). It uses a unique process that uses machine learning to rapidly grow its knowledge base and a Snyk security engineer to assure the quality of the rules. As a result, the Snyk Code knowledge base grows exponentially and results in an industry-leading high accuracy. On top of that, Snyk Code provides real-time scanning so developers can use it right from their favorite IDE.

Read Post