• IBM and Google combine forces to tackle container security

    10 days ago - By CBR

    Google's Grafeas Project is set to be enhanced by an IBM security tool as the pair collaborates to tackle container security weakpoints.
    The Grafeas Project is a Google Cloud API designed to audit and govern supply chains, and it will be implemented with the Vulnerability Advisor tool from IBM.
    Vulnerability Advisor is a container scanning tool that is a component of the company's container service on the IBM Cloud. The tool is able to locate weak software configurations by scanning container images, ultimately leading to a risk report.
    By harnessing the Grafeas Project API, Google and IBM...
    Read more ...

     

  • What is Grafeas? Better auditing for containers

    What is Grafeas? Better auditing for containers

    11 days ago - By InfoWorld

    The software we run has never been more difficult to vouchsafe than it is today. It is scattered between local deployments and cloud services, built with open source components that aren't always a known quantity, and delivered on a fast-moving schedule, making it a challenge to guarantee safety or quality. The end result is software that is hard to audit, reason about, secure, and manage. It is difficult not just to know what a VM or container was built with, but what has been added or removed or changed and by whom. Grafeas , originally devised by Google, is intended to make these...
    Read more ...