Henry Hund's Posts

Recap: Aptible July 2017 Quarterly Product Update Webinar

Henry Hund on July 26, 2017

Once each quarter, the Aptible product team hosts a brief update webinar to share what’s new with Enclave and Gridiron. Yesterday, we hosted our July update webinar, highlighting all the new features released for Enclave this quarter and demoing how to setup your security management program with Gridiron.

In case you missed it, you can watch a recording of our July webinar below. You can grab the transcript and the slide deck in our resources section. And, we provide a full recap of the event in this blog post.

Register now for next quarter’s webinar, which we will host in October.

July 2017 Quarterly Product Update Webinar


New Open Source Project: Supercronic - Cron for containers

We opened the webinar with a quick overview of Supercronic. Supercronic is our new open source job runner that fixes the problems that occur when using traditional Cron implementations in containerized environments.

Supercronic example cron/job runner code.

We’re excited about Supercronic because, while it’s a drop-in replacement for traditional cron, it leaves environment variables alone, passes job output to stderr, and logs job failures and timeouts, which makes it a perfect fit for containers. You can read more about Supercronic or check it out on Github.

New for Enclave

Enclave is a container orchestration platform for developers working in regulated industries. We are working towards making Enclave the best place to deploy regulated and otherwise sensitive projects. To that end, over the last quarter we implemented a number of important new features that make it easier to deploy and manage apps and databases on Enclave.

(As a sidenote, you can always follow along with new feature development by checking out the Aptible Changelog.)

Container Recovery

Arguably, the implementation of Container Recovery represents the most significant change to Enclave this quarter. We’ve previously covered Container Recovery extensively in our Changelog as well as in our docs, but given the magnitude of the change it bears a quick review here.

In sum: Container Recovery automatically restarts your application and database containers when they exit. When an app or database container exits, we’ll restart it in a pristine state. The best part? You don’t need to do anything to take advantage of Container Recovery. It’s enabled for all your apps and databases automatically.

Database Self-Service Scaling

In our April webinar, we indicated that self-service scaling of databases was coming soon. It’s now here.

With some exceptions, you can now resize databases at any time, with minimal downtime. This allows you the flexibility to scale your disk and RAM footprint as your workload and requirements change.

You can scale your databases via the CLI, or toggle the size from within the Enclave dashboard:

Database Scaling Self-service.

You can read more about Self-Service Database scaling in our Changelog.

App Deployment

This quarter, we also launched three features to make it easier to deploy apps on Enclave.

You can now deploy directly from Docker images, no git required. This will allow you to reuse existing Docker images and take full control over your build process. Read more about Direct Docker Image Deploy in our Changelog.

Direct Docker Image Deploy.

Along with this change, Procfiles are now optional. This enables you to reuse the same codebase across Enclave and other container orchestration platforms like Kubernetes and Docker Swarm.

Finally, you can now synchronize deploys with config changes. This allows you to deploy at the same time you update your config, so there will be no intermediate step where you’re running the old code with the new config or vice versa.

Synchronize deploys and config changes.

Other Enclave Changes

There are a number of additional improvements we made to Enclave this quarter. Check out the webinar recording above for more, including:

  • New and upcoming Endpoint configurations for both apps and databases

  • Updates to the scriptability of our CLI

  • Launch of an .exe for our Windows CLI

Gridiron Implementation - Setting up your security and compliance management process

Gridiron is easiest way for developers to build and run world-class data security programs. It turns information security requirements into repeatable processes while managing all the documentation required to demonstrate that you’re complying with stringent compliance protocols such as HIPAA, ISO 27001, and SOC 2.

After completing the review of this quarter’s updates to Enclave, we showed how a company could get started with Gridiron quickly. At a high level, Gridiron implementation can be broken down into four steps:

  1. Aptible-guided implementation process with hands-on support and training

  2. Determine your baseline controls

  3. Generate reporting and documentation

  4. Continuous updates

During your hands-on guided implementation with the Aptible team, we’ll train you on how to setup and manage a security program.

By the end of the implementation, you’ll use Gridiron to determine a set of baseline security controls and prepare your first set of security documentation (such as your Risk Assessment, Policies and Procedures and Workforce Training).

Gridiron Risk Assessment Demo During Webinar.

Your deliverables, such as your risk assessment report, your policies, and your training materials, will automatically change along with your organization. Gridiron updates your docs as your organization evolves.

In the webinar demo, we go into much more detail on using Gridiron to track and measure risks and vulnerabilities, train your team on security and compliance, and respond to incidents as they arise.

Register for October 2017 Aptible Product Update Webinar

Our next product update webinar will be hosted on October 25, 2017 at 11am Pacific / 2pm Eastern.

Registration is now open.

All registrants will receive a webinar recap and the recording shortly after the conclusion of the webinar.

Read more

Recap: Aptible April 2017 Quarterly Product Update

Henry Hund on April 19, 2017

Over the last quarter, we released a number of new features and updates for the Enclave deployment platform. We also began helping customers deployed on AWS to manage their organization’s security and compliance using Gridiron.

Yesterday, on a brief webinar, our team reviewed the updates to the Enclave platform and showed how Gridiron helps software developers build and maintain strong security management programs.

In case you missed it, you can download the slide deck and get the transcript in our resources section, or watch the full event below. We also provide a quick recap in this blog post.


New for Enclave

We intend for Enclave to be the best platform for developers to deploy regulated and sensitive software products. This quarter, we focused on improving Enclave in three ways: security and compliance, database self-service, and general usability improvements.

Security and Compliance

We launched new ways to secure apps and meet compliance goals while improving the security of Enclave itself.

We’ve previously detailed these improvements on our blog. Here’s the list:

Database Self-Service

Self-serve database scaling is coming soon. The Aptible CLI now supports aptible db:reload, disk resizes are a lot faster, and we will launch self-service database scaling soon.

Usability Improvements

We launched a few small improvements that should make developers’ lives easier when deploying with Enclave:

  • We now protect against runaway SSH sessions when your session gets disconnected

  • Memory management restarts apps in pristine containers when they exceed memory limits

  • Enclave Log Drains now integrate with Sumo Logic and Logentries as an alternative to rolling your own ELK stacks

Gridiron

Gridiron is our suite of tools that helps developers build and maintain strong security management programs. Gridiron makes the administrative side of protecting data easy and helps to prepare you for regulatory audits as well as customer security reviews.

In the webinar, we gave a short talk-through of how Gridiron approaches security management. This starts with the Gridiron Data Model: an API that integrates data from your business, our experience working with hundreds of customers in securing sensitive data, and industry-wide security standards provided through NIST Guidance, vulnerability and attack databases and shared intel.

The Gridiron Data Model integrates information about your business, everything Aptible has learned about protecting sensitive data across hundreds of customers, and industry-wide security best practices.

Gridiron ingests data about your business through a series of straightforward and relevant questions that are easy to answer but have important implications for your internal security program.

Gridiron asks simple, straightforward questions that have important ramifications for your security program.

Gridiron uses that data to create deliverables that help you show security and compliance as well as improve your business operations.

Gridiron provides complete documentation and reporting to help you show security and compliance.

Getting started with Gridiron

If you’d like to improve your organization’s security and compliance and simplify the process for working through customer security reviews and regulatory audits, please get in touch. For a limited time we’re offering early access pricing for customers who have deployed on AWS.

Register Now for July 2017 Aptible Product Update Webinar

Our next product update webinar will be hosted on July 25, 2017 at 11am Pacific / 2pm Eastern.

Please register now.

All registrants will receive a webinar recap and the recording shortly after the conclusion of the webinar.

Read more