DevSecOps
Number of Posts: 24
Filter By:
Number of Posts: 24
Secure DevOps | September 24, 2020
Empower Your Developers and Users to Overcome Application Security Vulnerabilities
By reading & sharing this blog, you'll learn how to manage security risk in your applications more effectively, whether you're a user or app developer.
Uncategorized | September 22, 2020
Compass Supports Single Sign-On
Tired of entering your password? I know I am. If I didn’t have to type in my password 20 times every day, I would have finished fixing all the defects in Compass. Ok, that’s hyperbole, but it really is a pain, isn’t it? Wouldn’t it be great if you could log in once to access all your applications? The good old people writing security standards have been nice enough to give us a solution. It is called “single sign on”. With more and more DevOps products integrating with each other it is becoming even more important to have a centralized identity management solution where you can sign in once, and access multiple applications.  Single sign-on (SSO) prevents the need to sign on to multiple applications separately. Rather than having to sign on for each application, the user signs in once at an identity provider (IP) and this provides tokens to provide to other web applications and services. A token is like an ID card. You show it wherever you go, and it is trusted in many places. If the ID card is trusted, you can do things such as rent a car, walk into a secure building, fly on a plane, and so forth. The same goes for SSO tokens. For any application that is set up to trust the token, it will allow you to log in to that application as the authenticated user. SSO makes it easier and more secure to use different applications, because you only need to log in once and you only do so on the trusted login site.  Authentication and authorization are separate in SSO. The first time a user connects to one of the applications, the user must authenticate by logging in. While the token is valid (usually in 24 to 48 hours), the user does not need...
Uncategorized | September 14, 2020
VersionVault around the DevOps Clock
HCL VersionVault is a great tool, but there is not a magic tool to do everything we need. This is also true in DevOps. Thus, HCL VersionVault read blog for more details.
Uncategorized | September 2, 2020
A word from Semiwiki: Compass edition
Semiwiki recently viewed the latest Compass webinar: Introducing HCL Compass. Mike Gianfagna from Semiwiki, previously shared his thoughts on HCL VersionVault's webinar. Now he's expressing his take on HCL Compass. As before, he begins by describing the webinar's play-by-play, creating a visual for his readers. He later goes into an in-depth approach in presenting details of his reaction by saying he "highly recommends" watching HCL Compass' webinar.  He breaks down the webinar in which he states:  "What followed was the development of complete defect tracking tool, built in real-time as you watched. There was interesting discussion between Howie and Leah as Howie requested Leah to add new capabilities. Leah was able to do that easily – Howie couldn’t “stump” her. Leah’s command of the product and its application scenarios was both impressive and built confidence in the tool. As the end of the webinar approached, Steve provided an honest, “from the heart” view of what remote development looks and feels like in the current environment. There were some great observations offered about how tools like HCL Compass can change the game in this “new normal”. To hear more, you’ll need to watch the webinar." To read more of Semiwiki's review on HCL Compass, click here. 
Secure DevOps | September 1, 2020
HCL AppScan – The New Hybrid Security Employee
By reading this blog, you're learn the key traits and multi-disciplinary areas of focus that are required for hybrid security professionals to succeed.
Secure DevOps | September 1, 2020
HCL AppScan – Assure Continuous Security
In the 4th and final blog in our Continous Security blogging series, we focus on the Assure theme & its capabilities of Measure & Audit.
a/icon/common/search Created with Sketch.