Beyond IOCs: Validate security controls with quality threat intelligence
Red Hat News

In this article, I discuss a proposal to build a success-primed team to modernize a portfolio of applications.

We will take into account our points for alignment from our previous blog post. It's important to remember this might not be a team that will be long running or one that will become a key part of the enterprise culture. As we discussed in the previous article, there will be a set budget and timeframe to get the work done. What is being proposed in this article is building a team to get results under these constraints.

Friday Five - July 29, 2022
Red Hat News, July 29h, 2022
The Friday Five is a weekly Red Hat blog post with 5 of the week's top news items and ideas from or about Red Hat and the technology industry. Consider it your weekly digest of things that caught our eye.

  • Enterprise Storage Forum - Containerization Q&A With Stu Miniman at Red Hat: Significant Industry and Technological Growth for Containers
  • Reuters - OS Climate launches climate planning tools for companies, investors
  • How Red Hat products and services are enabling banking, automotive and urban planning innovation
  • In the Clouds (E26) | Cloud Ecosystem
  • Compiler - Are Mistakes That Big of a Deal? Part 2

Read on for details

Red Hat Product Security has been developing RapiDAST, a tool that can be used for security testing of products and services.

It is also helpful for developers or quality engineers (QEs) to test the security of products during the software development life cycle (SDLC).

As the name suggests, RapiDAST is focused on performing rapid (automated) dynamic application security testing (DAST). While there are many security practices we can consider comprehensively for improving security posture of development environments - threat modeling, software composition analysis (SCA), static application security testing (SAST), fuzzing, penetration testing, etc. - this article focuses on DAST.

In this month's customer success highlights, learn how Banfico, Porsche Informatik and Korea Land and Housing Corporation are making use of Red Hat products and services to expand partnerships, scale business growth, reduce application delivery times and more.

Banfico delivers open banking with Red Hat OpenShift Service on AWS

Fintech startup Banfico provides Software-as-a-Service (SaaS) solutions to its client banks in alignment with the United Kingdom (UK)'s Open Banking mandate.

Open banking is a business model that uses application programming interfaces (APIs) to more safely share financial data between organizations and technologies, transforming the banking industry by supporting more innovative and engaging customer experiences.

Continuous integration, continuous delivery (CI/CD) and DevOps - you often hear these terms used interchangeably, and you've likely heard them bundled in together with GitOps. So what is GitOps?

And when you're comparing GitOps vs. DevOps, how are they different?

GitOps vs. DevOps

GitOps is an operating model. It unifies automation, application delivery, infrastructure management and security to create a declarative framework for faster, higher quality application development and delivery. Sound a lot like DevOps? That's because it is - GitOps is DevOps. It's a natural progression enabled by the declarative workflows popularized throughout the industry by Kubernetes. But how does GitOps work? This is a question we get asked often. So often that we've bundled all our GitOps best practices into a new e-book - The Path to GitOps.

Virtio-Net Failover: An Introduction
Red Hat News, July 25th, 2022
Virtio-net failover is a virtualization technology that allows a virtual machine (VM) to switch from a Virtual Function I/O (VFIO) device to a virtio-net device when the VM needs to be migrated from a host to another.

On one hand, the Single Root I/O Virtualization (SR-IOV) technology allows a device like a networking card to be split into several devices (the Virtual Functions) and with the help of the VFIO technology, the kernel of the VM can directly drive these devices. This is interesting in terms of performance, because it can reach the same level as a bare metal system. In this case, the cost of the performance is that a VFIO device cannot be migrated.

On the other hand, virtio-net is a paravirtualized networking device that has good performance and can be migrated. The trade off is that performance is not as good as with VFIO devices.

See all Archived Red Hat News articles See all articles from this issue