Operations | Monitoring | ITSM | DevOps | Cloud

Zero Trust

kosli

Moving to a zero-trust model with Kosli's custom attestations

Feb 3, 2025 By Jon Jagger In Kosli
The Kosli CLI provides several attest commands, such as kosli attest snyk, kosli attest jira, etc. These attestations are “typed” - each one knows how to interpret its own particular kind of input. For example, kosli attest snyk interprets the sarif file produced by a snyk container scan to determine the true/false value for that individual attestation.
Read Post
opsmatters

How Are Cloud VPNs the Backbone of Secure Remote Access?

Dec 3, 2024 By OpsMatters In OpsMatters
At a time when remote work and cloud-based solutions are shaping the business world, secure access to data has become essential. Cloud VPNs (Virtual Private Networks) are central to this process, offering secure, scalable, and efficient solutions for remote access. Unlike traditional VPNs, which operate on-premises, Cloud VPNs integrate directly with cloud environments, making them indispensable for modern organizations reliant on cloud infrastructures and remote workforces.
Read Post
ivanti

NIST and the Evolution of Zero Trust

Oct 29, 2024 By John Armstrong In Ivanti
It’s important for every cybersecurity professional to understand the work of the National Institute of Standards and Technology (NIST). That’s because it plays a pivotal role in shaping the cybersecurity landscape, particularly through its groundbreaking NIST zero trust efforts. Zero trust is a security paradigm that transforms the traditional approach to network security.
Read Post

Open source cybersecurity: Zero trust and confidential computing

Oct 15, 2024 By Canonical In Canonical
What is the Zero Trust model in Cybersecurity? Watch the video as Ijlal Loutfi, Product Manager at Canonical, explains what Zero Trust is and why confidential computing is essential to safeguard systems against cyber attacks and vulnerabilities. Ijlal also discusses the technology that allows AI workloads to run in a confidential way. Stay tuned to our social media pages as we share educational materials to help your organizations stay secure this Month.
View Video
puppet

How to Achieve Zero Trust Adoption in U.S. Government

Sep 17, 2024 By Robin Tatam In Puppet
Zero Trust adoption is critical, especially for U.S. government agencies. With changing policies and requirements, it can be tough to stay ahead of everything you need to know. We’ll provide a high-level overview of Zero Trust adoption + share how automation can help you achieve compliance.
Read Post
N-able

5 Steps to getting started with Zero Trust

Aug 28, 2024 By Pete Roythorne In N-able
In the previous two blogs, we’ve traced the outline of Zero Trust from philosophy and principles to frameworks and marketing terms. In this blog Pete Roythorne talked to Marc Barry, Co-Founder and Chief Product Officer at Enclave, about how you can get started with Zero Trust Network Access. You can read the previous blogs here: To do this we’re going to use CISA’s Zero Trust Maturity Model as a baseline for understanding.
Read Post
haproxy

Zero-Trust mTLS Automation with HAProxy and SPIFFE/SPIRE

Aug 13, 2024 By Jakub Suchy In HAProxy
Whether you’re running a service mesh composed of HAProxy instances or facilitating communication between multiple systems, ensuring the authentication of traffic between your services is critical. This zero-trust security model operates under the assumption that you should not extend trust without verification, even within your own systems. By verifying every interaction, you mitigate the risks that arise when third parties imitate your systems.
Read Post
ivanti

SDP and Zero Trust: The Dynamic Duo for Application Security

Aug 7, 2024 By John Armstrong In Ivanti
Until relatively recently, enterprises relied on fixed perimeters using firewalls and VPNs to control access to networks and resources. Traditional network security assumed that everything within the network could be trusted, while external users were granted access with simple password protection.
Read Post
cloudsmith

Zero Trust Pipelines with OIDC, Cloudsmith, and GitHub Actions

May 28, 2024 By Ciara Carey In Cloudsmith
In CI/CD workflows, leaked credentials pose a significant threat, potentially leading to unauthorized access, data breaches, and system compromises, ultimately disrupting development pipelines and undermining the integrity of software deployment processes.
Read Post

Copyright © 2024 OpsMatters™. All rights reserved.