OpenClarity is a suite of open-source projects that provide comprehensive cloud-native security solutions for API security, Kubernetes security, and function security.
- Cisco has been quietly innovating in the open-source area for over five years and has made significant contributions to the open-source community, including OpenTelemetry.
- OpenClarity is a suite of open-source projects that provide comprehensive cloud-native security solutions for API security, Kubernetes security, and function security.
- Function Clarity is a keyless code integrity solution for serverless functions that disallows running malicious code.
- OpenClarity has been deployed in Cisco's production and commercial products, including Panoptica and Kalisteso.
- Developers need flexible and extensible tools that are cloud-native and not a bolt-on from the legacy world.
- OpenClarity is a community-led approach to cloud-native application security that offers a comprehensive solution to cloud-native security.
Function Clarity is a keyless code integrity solution for serverless functions that disallows running malicious code. The verifier serverless function running in the cloud environment takes the signature the first time you log in and sends that deploy that serverless function. After that, any malicious code that gets sent to it is trapped and disallowed from running those serverless functions. The presenter demonstrated how hacking the serverless function and trying to run it would result in a 'rate exceeded' message, which means that the concurrency ratio has been reset to zero, and the function cannot be invoked while that is zero.
The complexity and distributed nature of modern apps have increased the number of attack vectors. As more mission critical workloads move to cloud native architectures, there is an urgent need to protect new attack surfaces that arise. Yet, there is no single commercial tool that can comprehensively secure cloud native apps. Developers need flexible and extensible tools that are cloud native, and not a bolt on from the legacy world. And because no one knows more about what developers need than developers, it makes sense to come together as a community to create tools that developers love. Security for developers by developers. That’s what the OpenClarity suite of OSS offers - a comprehensive solution to cloud native security. Come hear all about how Cisco is leading the charge on community-powered innovation in cloud native security, AI/ML, API security, observability, network automation, and more.