Daniel Pigeon, Author at Garantir

Secure Container Signing with Cosign and PKCS#11

November 15, 2021

Over the past few years container adoption has grown rapidly. With it has grown the need to sign container images to help prevent supply chain attacks. The standards and tools to sign images have evolved over the years, and can still be a bit tricky to navigate for those new to container signing. This post will provide a brief background on some of the tools and standards, the pros and cons of each, and some best practices to follow when signing in your environment.

Preventing the Next Package Manager Supply Chain Attack

October 27, 2021

Recently, the popular NPM package ua-parser-js was compromised by attackers. At least three malicious versions of the software were released by attackers with capabilities including

Implementing The New Supply Chain Security Frameworks From Google, Microsoft, and CNCF

August 30, 2021

In this post, learn more about satisfying the requirements of three new frameworks for securing the software supply chain: Google’s SLSA Framework, Microsoft’s SCIM Framework, and CNCF’s Software Supply Chain Best Practices.

Key-Based Authentication: Using Cryptographic Controls To Manage Access To Enterprise Resources

August 17, 2021

Enterprises have a wide array of resources to protect: file shares, email servers, production systems, databases, source code repositories, DevOps tools, and more. If key-based authentication is enforced for all of these different resources, and the keys are secured in a centrally-managed KMS or HSM, the enterprise can easily enforce granular controls, monitor access to resources, audit key usage, and restrict access as required. Learn more in this post.

Streamlining Automated Certificate Management With Centrally-Secured Private Keys

July 20, 2021

Garantir is pleased to announce new automated certificate management capabilities in the GaraSign product. The GaraSign approach enables the enterprise to centrally secure all private keys and streamline the certificate orchestration process.

How To Instantly Revoke Access To Files On Remote Workstations

June 16, 2021

Managing access to files and documents that have been downloaded and stored on end-user workstations is difficult. Check out this blog post to learn how to overcome this challenge.

Taking MFA Down A Notch: Enforcing Security Controls Without Software Changes

June 8, 2021

Security controls like MFA and device authentication can be applied at the transport layer, which eliminates the need to modify web applications or the servers that host enterprise resources like email, files, data, and so on. Learn more about this new approach in this post.

Protecting Confidential Data From Device Theft & Insider Threats

January 27, 2021

Bring-your-own-device (BYOD) policies are becoming the new norm and, in combination with several recent events, the risk of a data breach via a stolen device or an insider threat is a cause for concern. Learn how to mitigate these risks in this post.

Preventing Malware Injections: Best Practices For Secure Software Development

January 12, 2021

This post describes security controls that an enterprise can deploy to prevent and detect attackers who are attempting to insert malware into a software’s code base.

Automated Certificate Management With GaraSign

Use Cases

Industry

Business Need

Services

Resources

About Garantir

Author: Daniel Pigeon

Secure Container Signing with Cosign and PKCS#11

Preventing the Next Package Manager Supply Chain Attack

Implementing The New Supply Chain Security Frameworks From Google, Microsoft, and CNCF

Key-Based Authentication: Using Cryptographic Controls To Manage Access To Enterprise Resources

Streamlining Automated Certificate Management With Centrally-Secured Private Keys

How To Instantly Revoke Access To Files On Remote Workstations

Taking MFA Down A Notch: Enforcing Security Controls Without Software Changes

Protecting Confidential Data From Device Theft & Insider Threats

Preventing Malware Injections: Best Practices For Secure Software Development

PLATFORM

INDUSTRY

BUSINESS NEED

SERVICES

ABOUT

RESOURCES

SOCIAL