Tags

Biden-Harris National Cybersecurity Strategy: Securing the Nation’s Future with Panoptica

author_profile
Sarabjeet Chugh
Monday, Mar 6th, 2023

Addressing Biden-Harris Administration's National Cybersecurity Strategy with Panoptica and OpenClarity solutions.

On March 2, 2023, the Biden-Harris Administration issued a new National Cybersecurity Strategy, focusing on strengthening and securing the nation's digital ecosystems through an improved software liability framework for software products and services and best practices for secure software development. As a cloud native security vendor like Panoptica, we are pleased to see the pillars of the strategy codified, but we also acknowledge that everything laid out in the strategy has been possible for years for many private sector organizations.

The Strategy's proposed frameworks, tools, and guidance highlight the need for a collaborative approach to software security, recognizing that software will never be perfectly secure, and bad actors will continue to exploit the gaps. Panoptica's security functionality can help address some of the requirements raised by the Biden government.

One of the best practices specifically called out in the strategy is promoting further development of Software Bill of Materials (SBOM) tooling. With Panoptica's SBOM analysis and code-signing features, organizations can easily create, manage, and verify applications code bill of material (SBOM), using an inventory of software components used in their products and services. Generating and managing their code artifacts bill of material (SBOM) helps ensure that all components are up-to-date, properly licensed, not tampered with, and do not contain any known vulnerabilities.

K8s Cluster

The Strategy also highlights the importance of adopting standards and frameworks like NIST's Secure Software Development Framework. Panoptica's KubeClarity capabilities can help. KubeClarity is a tool for detection and management of SBOM and vulnerabilities of in any cloud native format (container images, serverless functions or VMs). It scans both runtime Kubernetes clusters and continuous integration/continuous delivery (CI/CD) pipelines for enhanced software supply chain security.

Open Clarity

The Strategy also emphasizes the need for investment in Open Source Software (OSS) Security, recognizing the benefits that OSS provides across every industry. Panoptica is powered by OpenClarity, a suite of OSS software for cloud-native application security and observability. It consists of 3 projects – KubeClarity, APIClarity, and FunctionClarity. APIClarity, organizations can monitor their APIs for vulnerabilities and suspicious activity, while FunctionClarity enables them to verify their serverless function’s code integrity from its “build” phase to its runtime/execution in the cloud.

At Panoptica, we are committed to helping organizations reach a secure-by-default future. We believe that by providing tools and best practices that bake security into the development process by default, we can empower developers and maintainers and support CISOs and their organizations as they seek to mitigate the risk of deploying vulnerable software. We invite organizations to learn more about how Panoptica's features can help them address the requirements raised by the Biden government and secure their digital ecosystems.

If your organization is interested in learning more about Panoptica and how we address the cloud-native application security comprehensively, including SBOM analysis and code-signing, and the use of secure open source software like KubeClarity and APIClarity, then contact us. 

Popup Image