Cloud

9/15/2017
01:20 PM
50%
50%

Google, Spotify Build Open-Source Community for GCP Security

Google and Spotify create Forseti, an open-source community with tools to secure projects on the Google Cloud Platform.

Google and Spotify today announced they've been developing security tools to help businesses protect projects on the Google Cloud Platform (GCP). The tools are now available in an open-source community called Forseti Security, which is open to all GCP users, the companies report.

The idea for Forseti sparked when Spotify moved its back-end data infrastructure from in-house data centers to the cloud. It wanted to build more specific tools to automate security processes for its engineering team. Google had already developed its own security tools for the platform, so the two decided to work together rather than separately develop their own products.

Forseti is an open-source kit that organizations can use to ensure they have the right security controls in place throughout GCP. Tools include: Inventory, for visibility into GCP resources; Scanner, for verifying access control policies; Enforcer, for removing unwanted access to GCP resources; and Explain, for analyzing who has access to different resources.

Spotify, for example, has used Forseti to create a notification pipeline that alerts its team to potentially dangerous misconfigurations in GCP. If a violation is found during a resource scan, it triggers a notification and the team responsible is automatically alerted.  

Read more details and learn how to participate here.

Join Dark Reading LIVE for two days of practical cyber defense discussions. Learn from the industry’s most knowledgeable IT security experts. Check out the INsecurity agenda here.

Dark Reading's Quick Hits delivers a brief synopsis and summary of the significance of breaking news events. For more information from the original source of the news item, please follow the link provided in this article. View Full Bio

Comment  | 
Print  | 
More Insights
Comments
Oldest First  |  Newest First  |  Threaded View
What We Talk About When We Talk About Risk
Jack Jones, Chairman, FAIR Institute,  7/11/2018
Major International Airport System Access Sold for $10 on Dark Web
Kelly Sheridan, Staff Editor, Dark Reading,  7/11/2018
Mueller Probe Yields Hacking Indictments for 12 Russian Military Officers
Kelly Jackson Higgins, Executive Editor at Dark Reading,  7/13/2018
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win a Starbucks Card! Click Here
Latest Comment: Cyberspace is much less secure than my old lamp.
Current Issue
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2018-14363
PUBLISHED: 2018-07-17
An issue was discovered in NeoMutt before 2018-07-16. newsrc.c does not properly restrict '/' characters that may have unsafe interaction with cache pathnames.
CVE-2018-14349
PUBLISHED: 2018-07-17
An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. imap/command.c mishandles a NO response without a message.
CVE-2018-14350
PUBLISHED: 2018-07-17
An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. imap/message.c has a stack-based buffer overflow for a FETCH response with a long INTERNALDATE field.
CVE-2018-14351
PUBLISHED: 2018-07-17
An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. imap/command.c mishandles a long IMAP status mailbox literal count size.
CVE-2018-14352
PUBLISHED: 2018-07-17
An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. imap_quote_string in imap/util.c does not leave room for quote characters, leading to a stack-based buffer overflow.