INFRA
INFRA
INFRA
With new platform release, Sysdig looks to make containerized apps more secure
Sysdig Inc. debuted a new version of its software container security platform at the DockerCon conference today, with features to prevent code vulnerabilities from making their way into enterprise applications.
Many factors can lead to a security weakness slipping through the cracks. One of them, according to Sysdig, is that companies often push back vulnerability testing until the latter stages of the development cycle. Today’s update aims to facilitate an alternative approach.
At the core of Sysdig Secure 2.0 is a scanner that can automatically check software libraries, packages and configuration settings for vulnerabilities. Freeing up developers from having to run security assessments manually could make it much more practical to perform testing on a regular basis. This is especially true in fast-paced software projects that rely on containers.
Enterprises are rapidly embracing containers because they allow for software to be deployed in a lightweight and highly portable form without rewriting. The technology’s flexibility can help development teams ship code faster, but shorter release cycles come at a cost: They leave less time for engineers to focus on security.
Sysdig Secure 2.0 lets companies integrate its automated vulnerability scanner directly into their development workflows via a new connector for Jenkins, the ubiquitous code management tool. The platform blocks code from getting released if it’s found to contain vulnerabilities.
Sysdig Secure is useful for catching other types of issues as well. For instance, companies can use the platform to flag application components that violate the privacy rules outlined in Europe’s recently implemented General Data Protection Regulation. Sysdig said it has added over 200 new compliance checks as part of the release.
On top of blocking vulnerable code, Sysdig Secure 2.0 also focuses on easing the detection of vulnerabilities that already exist in live production applications. The platform can quarantine or terminate vulnerable containers depending on the severity of the threat.
For a high-level view of exactly how much security risk exists in an environment, administrators can turn to the expanded analytics console included in the release. Sysdig said the dashboard offers insight not only into specific containers or servers but also provides higher-level context about the business assets they underpin.
Image: Unsplash
A message from John Furrier, co-founder of SiliconANGLE:
Support our open free content by sharing and engaging with our content and community.
Join theCUBE Alumni Trust Network
Where Technology Leaders Connect, Share Intelligence & Create Opportunities
11.4k+
CUBE Alumni Network
C-level and Technical
Domain Experts
15M+
theCUBE
Viewers
Connect with 11,413+ industry leaders from our network of tech and business leaders forming a unique trusted network effect.
SiliconANGLE Media is a recognized leader in digital media innovation serving innovative audiences and brands, bringing together cutting-edge technology, influential content, strategic insights and real-time audience engagement. As the parent company of SiliconANGLE, theCUBE Network, theCUBE Research, CUBE365, theCUBE AI and theCUBE SuperStudios — such as those established in Silicon Valley and the New York Stock Exchange (NYSE) — SiliconANGLE Media operates at the intersection of media, technology, and AI. .
Founded by tech visionaries John Furrier and Dave Vellante, SiliconANGLE Media has built a powerful ecosystem of industry-leading digital media brands, with a reach of 15+ million elite tech professionals. The company’s new, proprietary theCUBE AI Video cloud is breaking ground in audience interaction, leveraging theCUBEai.com neural network to help technology companies make data-driven decisions and stay at the forefront of industry conversations.
