Invary

Catch Jason Rogers and Aaron Trott at #KubeCon + #CloudNativeCon NA! We’ll be at the Confidential Computing Consortium booth (Q25) on November 13th from 12:45-2:45 and November 14th from 9:30-10:30 and 12:30-2:30. Stop by to explore how kernel integrity and attestation drive secure, trusted systems with confidential computing.

One of these Invary appraisals is due to an actual #rootkit, while the other shows what a popular Endpoint Security company can do to your #Linux kernel. Can you identify which one is the rootkit? If so, you win a prize! Invary ensures the Runtime Integrity of your operating systems, alerting?you to attacks and abuse you can't otherwise find. A few details: * These are small extracts from the full appraisals * Both the rootkit and the EDR impact vast areas of the kernel * Redacted for privacy, posted with permission We are launching #eBPF & hardware Runtime Integrity soon, just wait until you see what is hidden from you there.

If the details we are hearing about the upcoming #RCE flaw in #Linux are true, then verifying your Runtime Integrity has never been more important. Especially with no patch developed as of yet. The only way to ensure nobody has control over your OS but you is to use Invary. https://invary.com or [email protected] (or DM me)

Invary is excited to announce our acceptance into the Center for Internet Security's marketplace! If you are a SLTT organization, be sure to visit our listing page to take advantage of a limited time offer.

Invary is excited to sponsor this amazing event with such an incredible lineup of experts!

20 days until Fed Supernova in Austin, TX! ?? August 20-22 ?? Capital Factory Stop by the Invary booth to learn about the latest in runtime integrity technology. #runtimeintegrity #linux #ebpf #attestation

Buried in this excellent root cause analysis of the #Crowdstrike issue by Microsoft are two very important statements: 1. "Enabling zero trust approaches like?high integrity attestation?which provides a method to determine the security state of the machine based on the health of Windows native security features." Invary's approach to cybersecurity and confidentiality is 100% focused on Runtime #Attestation (Integrity) and extends to both Linux and Windows. "Runtime" is key here - only validating the integrity of a machine at boot, or simply focusing on attesting data defined at boot, is not enough. 2. "Reducing the need for kernel drivers to access important security data." Today's threat detection is invasive to the OS and can at times extend the attack surface of a kernel. Invary utilizes (and validates the Integrity of!) eBPF in the Linux world to safely read kernel memory, and doesn't require a kernel module or driver that extends your attack surface. Interestingly, Invary's Runtime Integrity service identifies the changes your threat detection solutions make to the kernel, showcasing the point how invasive they can be.

We are thrilled to announce that Invary has joined the Confidential Computing Consortium! Invary’s remote attestation services enhance the runtime confidentiality of Trusted Execution Environments (TEEs), ensuring data remains secure during processing. By joining forces, we aim to foster secure, privacy-preserving computing environments and promote the development of open standards for confidential computing. Learn more about how Invary can help attest to your confidential computing environment: https://lnkd.in/gzJJWwWb

Insightful article by Peter Loscocco on #RuntimeIntegrity in this months #AdminMagazine. Peter served nearly 40 years at the NSA, researching problems associated with system security. He is the originator of #SELinux and the inventor of the patents that power Invary. Discover how Invary can help keep your systems #confidential and #secure: https://invary.com

Invary’s Wesley Peck presenting our joint project with AMD and the NSA’s LACR at #CCSummit Multiple #attestations strengthen #ConfidentialComputing