Red Hat’s OpenShift Container Platform 3.3 is now available, enhancing enterprise scalability and increasing speed and workflow automation. It also enables users to deploy their modern applications over multiple infrastructures.

With new delivery pipelines based on Jenkins’ Continuous Delivery pipelines, this platform also addresses the need for automation capabilities in the application development life cycle. New features provide users with improved A/B testing automation through OpenShift’s integrated routing and software-defined networking capabilities, according to Red Hat.

Also, Red Hat announced the Open Container Initiative Daemon, which is a new Red-Hat backed project in the Kubernetes incubator. Enterprises need a stable environment for running production applications in containers, so this is an attempt to bring more Linux container innovation to these environments, said Red Hat. This project also aims to help organizations optimize containers running in production environments.

Data science integrations, enhanced SPA support, and more from SOASTA
SOASTA announced its fall release yesterday, extending its Digital Performance Management (DPM) platform to include deep data science integrations across its portfolio. SOASTA’s DPM also includes performance metrics and key marketing analysis tools, and it expanded predictive analytics into new industries, according to SOASTA.

With new deep data science integrations, SOASTA’s mPulse becomes powered by the data science engine, which allows for RUM-based testing and integration merged with the mPulse dashboards, according to SOASTA. This release includes single-page application support for performance testing and new functionality with its dashboard so users can select any conversion or metric. Measuring SPA is improved with JavaScript error tracking, alerting and analytics.

This release highlights SOASTA’s commitment to “BizOps,” or breaking down silos that are still present among business and software teams. It also isolates first-party resources so teams can determine the impact from a third-party resources.

More information can be found here.

Increasing account security for enterprise Gmail users
Google is working to protect its enterprise Gmail users with a new policy that will take effect by Oct. 5. The policy aims to increase account security via OAuth 2.0 token revocation.

Users in a Google Apps domain who change their passwords on or after Oct. 5 will lose their OAuth 2.0 tokens for apps that access a user’s mailbox using Gmail-based authorization methods, according to product lead Michael Winser and developer advocate Wesley Chun.

A revoked OAuth 2.0 token will not provide access to a user’s resources, and any attempt to use a revoked token in API calls will result in an error. Existing tokens should be discarded, according to the Chun and Winser.

Only when a user changes his or her password from that point onward will their Gmail-related tokens become invalid. Users will not notice specific changes on this day, and their apps will still work, according to the Chun and Winser.

Google recommended developers modify their application to handle HTTP 400 or 401 error codes, which will result from revoked tokens and prompt the user to go through an OAuth flow again to reauthorize their apps, according to the Chun and Winser.

Developers can find more information on revocation here.

Survey: Most enterprise software deployments happen in the cloud
Adaptiva released its 2016 Cloud Software Deployment survey report, which looked at what 300 IT professionals are doing to deploy their software through on-premise, cloud or hybrid environments, and what they plan on doing in the future.

A key takeaway from this survey included a majority of respondents reporting that they deploy software on premise, followed by more than fifth saying they use a hybrid cloud or on-premise combination. Eighty-six percent of respondents said that they plan to use the cloud for software deployment at some point in the future or do so already, and almost half said they plan to shift to the cloud in the next two years.

Survey respondents also said they feel that software deployment through the cloud can make their jobs easier. But, for the 70% of respondents who use on-premise software deployment, they cited a few major barriers, including the lack of technical experience, not enough controls over software going to systems, and overall costs.

In response to these IT professionals, Adaptiva announced its IT serverless option for distributing software from the cloud by using Microsoft System Center Configuration Manager and Microsoft Azure. The product is called OneSite 6.0, and it uses peer-to-peer content sharing to allow enterprises to download their software from the cloud only once. Then it uses clients instead of servers to share the content locally.

Report: Massive Yahoo hack affects 200 million users
According to a report from Business Insider, Yahoo is planning to confirm a historic hack that affected 200 million of its users, with data including passwords, usernames, encrypted passwords, dates of birth and some e-mail addresses.

The hacker who held onto the data from the breach told Motherboard that he was selling the data for three bitcoins, worth US$1,860 at the time. This breach was carried out in 2012 and was never made public, according to the report.

This alleged breach happened to be during Yahoo’s process of selling its core business to Verizon for US$4.8 billion, and Business Insider said that this highlighted what ordinary users can do to protect each website or service they use.

The post Red Hat updates its container platform, SOASTA releases new integrations, and a survey reveals how IT pros deploy software—SD Times news digest: Sept. 22, 2016 appeared first on SD Times.

The new solutions focus on three key areas such as secure development, security testing, and continuous monitoring and protection in production, and they are focused on integrating and extending security.

According to the HPE State of Security Operations Report 2016, 85% of security operations centers are failing to meet business goals and need a better way to approach security. HPE’s new approach—HPE Fortify Ecosystem and Fortify on Demand (FoD) continuous application monitoring service—will help organizations create secure applications that integrate with security testing processes and resources into today’s DevOps life cycle.

(Related: Micro Focus intends to merge with HPE)

One of the reasons why companies are getting breached so often is because they are trying to protect legacy software or software where security wasn’t already built in, said Maria Bledsoe, senior product marketing manager for HPE Security Fortify. She said that this is a problem because security is a major challenge, and it needs to become a natural part of what IT does everyday instead of security being siloed from the rest of the organization.

The HPE Fortify Ecosystem features integrated systems including categories like cloud, open source and containers, and it has partners in Chef, Docker and Microsoft.

Also, HPE Fortify Ecosystem and FoD continuous application monitoring will allow organizations to secure their applications throughout all stages of development, and before applications are brought to market.

Additionally, HPE announced that HPE ArcSight Data Platform 2.0 will be available globally on Oct. 5, and HPE SecureData and HPE Atalla HSM integrated solution will be available globally on Sept. 21. HPE Fortify Ecosystem and HPE Security FoD are currently available globally.

The post HPE powers intelligent security operations with latest solution appeared first on SD Times.