Multifactor authentication (MFA) is becoming increasingly standard within software development organizations, with GitHub recently announcing that two-factor authentication (2FA) will be mandatory for all code contributors by the end of 2023. This is a smart move. In recent years, bad actors have frequently initiated attacks by accessing source code through the use of stolen developer […]
Gravitational Becomes Teleport to Streamline Access Management
Gravitational today announced it has changed its name to Teleport and launched the Teleport Unified Access Plane, an open source security gateway that comes in the form of a single binary that acts as a proxy for remotely accessing Linux servers and Kubernetes clusters. Teleport Unified Access Plane (UAP) for managing those gateways can be […]
build.security Leverages OPA to Shift App Authorization Left
build.security today announced it has raised $6 million to launch a platform that promises to make it simpler for developers to centralize the management of authorization controls across multiple applications. The goal is to enable DevOps teams to shift control over application authorization further left to advance adoption of best DevSecOps practices using a platform […]
strongDM Extends Access Management as Code Efforts
strongDM today announced it has added an application programming interface (API) and software development kits for Go, Java, Python, Ruby and other programming languages for involving the single sign-on (SSO) capabilities of its infrastructure access management platform, in addition to adding support for command-line interfaces (CLIs) exposed by cloud service providers. At the same time, […]
Using PAM to Support the ‘Sec’ in DevSecOps
Despite its reputation as slow and complex, PAM can be included in the DevOps pipeline effectively The introduction of DevOps practices has led to a revolution in software development. However, as companies adopt these new technologies, tools and methodologies, incorporating privileged access management (PAM) becomes increasingly complex. Nonetheless, corporate policies, industry standards and government regulations […]