RunSafe Security Launches New Software Supply Chain Security Platform for Comprehensive Risk Identification, Protection, and Monitoring
RunSafe Security Launches New Software Supply Chain Security Platform for Comprehensive Risk Identification, Protection, and Monitoring
Software supply chain transparency can reduce risks and build trust. With regulations such as the Cyber Resiliency Act and the FD&C Act, building and including SBOMs is quickly becoming a business must. These requirements are driven by software supply chain security concerns, which underscores the critical need for SBOMs to identify risks and stay ahead of potential threats.New platform provides powerful, integrated solution combining SBOM tooling with automated remediation and seamless integrations with commonly used CI/CD tools
新平台提供強大的一體化解決方案,將SBOm工具與自動修復和常用CI/CD工具的無縫集成相結合。
MCLEAN, Va., Dec. 17, 2024 /PRNewswire/ -- RunSafe Security, a leader in immunizing software from cyberattacks through a patented, frictionless process, today announced the release of the RunSafe Security Platform that automates risk identification, exploit prevention, and runtime software monitoring. Now, developers can generate a high-fidelity software bill of materials (SBOM) at build time, ensuring the highest level of accuracy in identifying software components and related vulnerabilities. This powerful, comprehensive solution includes the authoritative, build-time C/C++ SBOM generation for embedded systems and enhances a system's resiliency by automating the remediation of memory safety vulnerabilities in compiled code.
弗吉尼亞州麥克琳,2024年12月17日 /PRNewswire/ -- RunSafe Security是一家通過專利無摩擦流程爲軟件免受網絡攻擊的領導者,今天宣佈發佈RunSafe安全平台,該平台自動化風險識別、漏洞防止和運行時軟件監控。現在,開發人員可以在構建時生成高精度的軟件材料清單(SBOM),確保在識別軟件元件和相關漏洞時達到最高的準確度。這個強大而全面的解決方案包括爲嵌入式系統提供權威的構建時C/C++ SBOm生成,並通過自動修復編譯代碼中的內存安全漏洞來增強系統的彈性。
"Software is complex, often utilizing third-party components and open-source code, which leads to vulnerabilities that can compromise an entire system," said Shane Fry, CTO of RunSafe Security. "Today's organizations are challenged in managing scarce resources due to the constant need for software patching, minimizing operational disruptions, and enhancing security compliance to remain competitive. With our new platform, we are addressing these critical challenges by proactively protecting embedded software to enhance an organization's security with comprehensive risk identification, protection, and monitoring."
「軟件是複雜的,通常使用第三方組件和開源代碼,這導致了可能危及整個系統的漏洞,」RunSafe Security的首席技術官Shane Fry表示。「今天的組織在管理稀缺資源方面面臨挑戰,因爲它們需要不斷進行軟件補丁、儘量減少運營中斷,並增強安全合規性以保持競爭力。通過我們的新平台,我們正通過主動保護嵌入式軟件來解決這些關鍵挑戰,以全面的風險識別、保護和監控來增強組織的安全。」
Software supply chain transparency can reduce risks and build trust. With regulations such as the Cyber Resiliency Act and the FD&C Act, building and including SBOMs is quickly becoming a business must. These requirements are driven by software supply chain security concerns, which underscores the critical need for SBOMs to identify risks and stay ahead of potential threats.
軟件供應鏈透明度可以降低風險並建立Trust。隨着《網絡恢復力法》和FD&C法等法規的推出,建立幷包含SBOM正迅速成爲商業必要。這些要求源於軟件供應鏈安全問題,這進一步強調了SBOM在識別風險和應對潛在威脅中的關鍵需要。
Leading global software organizations, including Lockheed Martin, Vertiv, and Critical Software, already use the RunSafe Security Platform. "RunSafe's platform is timely given the new EU Cyber Resilience Act's product liability," says Critical Software CEO Joao Carreira. "Not only can organizations generate a complete SBOM, they can immediately mitigate vulnerabilities and future-proof against zero days using automated tools freeing developers to focus on new feature development."
領先的全球軟件組織,包括洛克希德馬丁、Vertiv和Critical Software,已經使用RunSafe安全平台。Critical Software首席執行官Joao Carreira表示:"RunSafe的平台在新歐盟網絡彈性法案的產品責任方面及時。"他說:"組織不僅可以生成完整的SBOm,還能立即緩解漏洞,並利用自動化工具防止未來的零日攻擊,讓開發人員專注於新功能開發。"
Powered by 400-plus vulnerability data sources, the RunSafe Security Platform delivers comprehensive cybersecurity solutions for embedded systems deployed across critical infrastructure. By generating an SBOM with complete visibility into software components, the platform reveals software dependencies, identifies vulnerabilities and quantifies risks. Organizations are provided with actionable insights to reduce exploit paths and enhance their security posture using automated tools throughout the development lifecycle.
RunSafe安全平台由400多個漏洞數據源提供支持,爲關鍵的製造行業中部署的嵌入式系統提供全面的網絡安全解決方案。通過生成具有完整軟件元件可見性的SBOm,該平台揭示了軟件依賴關係,識別漏洞並量化風險。組織獲得可操作的見解,以減少利用路徑並通過自動化工具在整個開發生命週期內增強其安全態勢。
Key capabilities and benefits include:
主要功能和優勢包括:
- RunSafe Identify generates SBOMs for embedded systems at software build time, identifies software vulnerabilities, and quantifies available risk reduction technologies for those vulnerabilities. By offering insights into software components, vulnerabilities, and effective mitigation strategies, RunSafe empowers organizations to enhance their software's resilience against evolving cyber threats.
- RunSafe Protect mitigates cyber exploits by relocating software functions in memory every time the software is run. This results in a unique memory layout to prevent attackers from exploiting memory-based vulnerabilities. This approach maintains system performance and functionality without modifying the original software. RunSafe also offers a repository of pre-hardened open-source packages and containers, providing immediate protection against attacks in open-source software commonly used in proprietary software.
- RunSafe Monitor provides real-time crash data and heuristics to determine whether a crash was a software bug or the result of a cyber attack. This capability enables precise triage, minimizing time and effort wasted on false positives. RunSafe's passive monitoring listens for software crashes, collecting data on stability, reliability, and potential vulnerabilities. When a crash occurs, this data is swiftly directed to incident response teams for accurate and efficient triage, enhancing overall software security and resilience.
- RunSafe Identify在軟件構建時生成嵌入式系統的SBOM,識別軟件漏洞,並量化可用的風險降低技術。通過提供對軟件元件、漏洞和有效緩解策略的見解,RunSafe使組織能夠增強其軟件對不斷演變的網絡威脅的彈性。
- RunSafe Protect通過每次運行軟件時重新定位內存中的軟件功能來減少網絡攻擊。這導致獨特的內存佈局,防止攻擊者利用基於內存的漏洞。這種方法保持系統性能和功能,而無需修改原始軟件。RunSafe還提供了一系列預先加固的開源軟件包和容器,爲常用於專有軟件的開源軟件提供即時保護。
- RunSafe Monitor提供實時崩潰數據和啓發式分析,判斷崩潰是軟件錯誤還是網絡攻擊的結果。這一能力使精確分診成爲可能,最大限度減少錯誤警報上浪費的時間和精力。RunSafe的被動監控監聽軟件崩潰,收集關於穩定性、可靠性和潛在漏洞的數據。當崩潰發生時,這些數據迅速轉交給事件響應團隊,以進行準確有效的分診,增強整體軟件安全性和彈性。
The RunSafe Security Platform will be generally available on December 16, 2024. To learn more, visit .
RunSafe安防平台將在2024年12月16日正式上線。要了解更多信息,請訪問 .
About RunSafe Security
RunSafe Security immunizes software from cyberattacks without developer friction, disrupting hacker economics. Our security techniques inoculate customer systems from an entire class of cyberattacks. Our customers integrate our product across build tools chains without developer friction, protecting open-source software and proprietary native code without changing system behavior or affecting system overhead. Headquartered in McLean, Virginia, with offices in Huntsville, Alabama, and Munich, Germany, RunSafe Security's customers span the aerospace & defense, energy & industrial automation, transportation & autonomy, medical devices, and high-tech verticals. Learn more at: .
關於RunSafe安防
RunSafe安防通過消除開發者摩擦,爲軟件提供網絡安全防護,打破黑客經濟。我們的安全技術使客戶系統免受整個類別的網絡攻擊。我們的客戶在構建工具鏈中無縫集成我們的產品,保護開源軟件和專有本地代碼,而不改變系統行爲或影響系統開銷。RunSafe安防總部位於弗吉尼亞州麥克林,並在阿拉巴馬州亨茨維爾和德國慕尼黑設有辦事處,客戶遍及航空航天和國防、能源和工業自動化、運輸和自主、醫療設備及高科技行業。更多信息請訪問: .
Media Contact:
RunSafe Security
Staci Cretu, SVP & CMO
[email protected]
媒體聯繫人:
RunSafe安防
Staci Cretu,SVP與CMO
[email protected]
SOURCE RunSafe Security
來源於RunSafe安防-半導體
WANT YOUR COMPANY'S NEWS FEATURED ON PRNEWSWIRE.COM?
想讓貴公司的資訊在PRNEWSWIRE.COM上特色展示嗎?
譯文內容由第三人軟體翻譯。