logo
allArticlesConferencesPresentations

Sponsored Keynote: Total Clarity on Your Application Security

Conference:  KubeCon + CloudNativeCon Europe 2023

2023-04-20

Authors:   Guillaume Sauvage de Saint Marc

Summary

Open Clarity is an open source suite effort that aims at addressing the entire cloud security and application security stack, and making it practical and usable for developers, cloud architects, and security teams alike.
  • Security is key for modern apps
  • Application security needs to be approached across the entire stack and software supply chain
  • Scanners are essential but need to be deployed and orchestrated at scale
  • Good dashboards and UI are necessary to convey a clear and convincing picture of application security posture
  • Open Clarity is an open source suite effort that aims at addressing the entire cloud security and application security stack
  • VM Clarity is a new project that offers VM agentless scanning at scale
  • More open source tools are needed to address the totality of the application security picture
The speaker used a blurry image to illustrate the need for clarity in application security. By breaking down the elements in the picture, it became clear that the young lady's purse was being stolen. Similarly, application security needs to be approached in its totality to understand what's going on with our application security.

Abstract

Cloud Architects and Application Security teams stand, on a daily basis, in front of difficult questions: Where is my application vulnerable? Which of my assets are at risk? Where can I be hacked? What are the most critical security flaws in my applications that put my CPU, application logic, and data assets at immediate risk?The industry and the open source community need a suite of tools that can be used to understand those risks across the entirety of an application development, deployment, and production runtime, across on-premises and cloud resources, over monolithic as well as cloud native architectures.We will share latest updates on Open Clarity, an open source suite effort that aims at addressing the entire cloud security and application security stack, and making it practical and useable for developers, cloud architects, and security teams alike.
Materials:
Tags:
cloud security
Application Security
CPU security
data security
Open Clarity

Post a comment

Related work

Leveraging SBOMS to Automate Packaging, Transfer, and Reporting of Dependencies Between Secure Environments - Ian Dunbar

Conference:  Cloud Native SecurityCon North America 2023
Authors: Jerod Heck, Ian Dunbar-Hall

Using OpenTelemetry for Application Security, with a Real Life Example

Conference:  KubeCon + CloudNativeCon Europe 2023
Authors: Ron Vider
2023-04-19

Evolution of AppSec: Perspectives from a Decade of Building OWASP ZAP

Conference:  RSA Conference 2021
Authors:
2021-05-17

Cloud Native Security Landscape: Myths, Dragons, and Real Talk - Edd Wilder

Conference:  Cloud Native SecurityCon North America 2023
Authors: Edd Wilder-James, Kim Lewandowski, Isaac Hepworth, Loris Degioanni, Randall Degges

From Security Testing To Deployment In a Single PR

Conference:  KubeCon + CloudNativeCon North America 2022
Authors: Sarah Khalife, Grant Griffiths
2022-10-28

Sponsored Keynote: Trust and Risk in the Software Supply Chain

Conference:  Cloud Native SecurityCon North America 2023
Authors: Emmy Eide