alcide

Alcide Blog

Cloud-native Security Provider

The Evolution of Serverless, Part 1: From Microservices to Containers to Functions

Nov 7, 2018 8:03:37 AM / by Anatoly Aliev posted in cloud security, serverless, workload protection

0 Comments

 

The post is part one of a blog series on the evolution of serverless security. The process of building applications has changed over time. Today, applications are designed to make use of multiple public clouds in addition to on-premises IT resources. They are also designed to use microservices, containers, and serverless. Each of these steps has been part of the evolution of application design, moving us towards applications that are inextricably interwoven with the infrastructure and workload automation software that controls the applications themselves.

Read More

What Is ChatOps and How Does It Scale Up Cloud Security?

Oct 18, 2018 3:43:35 AM / by Elad Ishay posted in Slack, chatops, devsecops, cloud security

0 Comments

 

 

Here’s a recent scenario: an organization’s  security team receives an alert from the monitoring system on their Slack channel with the content below:


AWS Account : SomeCompany_Development

IAM User : joel.burns@company.com

AWS API : AllowSecurityGroupIngress

Source IP Address : xxx.xxx.xxx.xxx

Security Group ID : sg-4fxxx4dx

Security Group Region : us-east-2

IP Protocol : tcp

From : 22

To : 22

IPRange : 0.0.0.0/0

Read More

Micro-segmentation for Better Cloud Security

Oct 10, 2018 5:20:56 AM / by Tal Rom posted in Micro segmentation, cloud security, workload protection

0 Comments

Micro-segmentation is an emerging practice that is quickly becoming a critical facet of cloud security. Its objective is not only to prevent compromise, but also to deal with what happens after compromise occurs. The purpose of micro-segmentation is to isolate applications and services from one another in order to prevent attackers from achieving their goalseven if they succeed in initially breaching the organization’s IT defenses.

Read More

4 Steps to a Secured Serverless Deployment: Gartner’s Security Considerations and Best Practices for Securing Serverless PaaS Report

Sep 24, 2018 10:00:00 AM / by Karine Regev posted in Gartner

0 Comments

“For most organizations, we believe serverless PaaS adoption is a matter of when, not if — with enterprise adoption rates exceeding 90% by 2021... However, as with the adoption of VMs and containers, support for securing serverless will initially have visibility and control gaps...Further, new types of attacks will emerge against serverless PaaS, requiring new approaches and techniques.” 1

Read More

Embedding Developers Know-how as Security Policy

Sep 5, 2018 7:43:11 AM / by Tal Rom posted in kubernetes, devsecops, cloud security

2 Comments

Deploying workloads in cloud environments comes with many benefits for businesses in terms of time to market, scalability, cost reduction and ease of use.

Read More

Exposing Kubernetes Workloads to the World Without Losing Sleep (or your Mind)!

Aug 22, 2018 4:12:32 AM / by Elad Ishay posted in kubernetes

1 Comment

So, you’ve got your Kubernetes cluster up and running, and now its time to expose workloads to the outside world in a secure fashion. 

 

Read More

Knative Trifecta: Kubernetes, Serverless and Service-mesh

Aug 8, 2018 1:03:00 PM / by Karine Regev posted in cloud security, serverless, devsecops, kubernetes

0 Comments

Trifecta: a variation of the perfecta in which a bettor wins by selecting the first three finishers of a race in the correct order of finish source

Read More

Cloud Security - Learning the Basics

Aug 7, 2018 7:51:33 AM / by Tal Rom posted in cloud security

0 Comments


This is the third post in a series focused on cloud security fundamentals.

Read More

Cloud Network Management and Security

Jul 26, 2018 4:31:48 AM / by Tal Rom posted in cloud security

0 Comments

The post is part two of a blog series on cloud security basics and fundamentals. In this instalment, cloud network management and security are addressed.

Read More

How to Configure Jenkins BitBucket Branch Source Plugin + One Very Annoying Gotcha..

Jul 24, 2018 4:58:42 AM / by Elad Ishay posted in devsecops, Jenkins, Bitbucket, BlueOcean, Apache-Tomcat, bitnami

0 Comments

In case your Git repo resides in Bitbucket and Jenkins is your favourite butler, you’ve come to the right place.

 

 

There is a great plugin out there that helps connecting Jenkins to your Bitbucket account called Bitbucket Branch Source Plugin.
This plugin comes really handy especially if your project has multiple branches. In Jenkins lingo “Multibranch Project”.

Read More