Try all of the on-demand periods from the Clever Safety Summit here.
The influence of ChatGPT and generative AI on the safety panorama is troublesome to gauge. Whereas risk actors can use these AI-driven options to generate phishing emails and malicious code, the use instances for safety groups are nonetheless rising.
However, a brand new ARMO integration means that ChatGPT can assist shield Kubernetes.
At present, ARMO, an open supply safety supplier and creator of Kubernetes safety instrument Kubescape, introduced the discharge of a brand new ChatGPT integration throughout the ARMO platform.
The brand new integration allows safety groups to construct customized controls with ARMO primarily based on Open Coverage Agent (OPA), which will be run to make sure Kubernetes clusters and CI/CD pipelines are safe and accurately configured.
Occasion
Clever Safety Summit On-Demand
Study the vital position of AI & ML in cybersecurity and trade particular case research. Watch on-demand periods right this moment.
Extra broadly, the combination highlights that ChatGPT has the potential to be a pressure multiplier for safety groups, which they will use to deploy safety controls throughout the cloud inside containerized environments.
Defending the cloud: A use case for ChatGPT and generative AI
The discharge comes because the defensive use instances of ChatGPT and generative AI proceed to develop, and only a month after Orca Safety launched an integration to course of safety alerts and generate actionable remediation steps to assist analysts determine and reply to threats sooner inside cloud environments.
ARMO’s new integration demonstrates that ChatGPT may also be utilized to safe Kubernetes deployments. On this explicit use case, safety groups can generate code and controls within the uncommonly used Repo language by getting into queries with pure language.
“ARMO has built-in ChatGPT to assist customers create their very own customized controls with out the necessity to know how you can use OPA and Rego,” mentioned Ben Hirschberg, CTO and cofounder of ARMO. “All they should do is write what they need to verify in pure language, and ARMO with ChatGPT will generate the precise management written in Rego with the outline and advised remediation.”
Because of this safety groups can spend much less time studying a brand new coding language, and extra time securing their cloud environments towards cybercriminals.
Whereas this is only one use case for ChatGPT to safe Kubernetes, Hirschberg notes that there are numerous different methods the instrument might be used, from writing YAML recordsdata to automating the deployment and safety of latest clusters.
For ARMO, the combination with ChatGPT supplies a invaluable alternative to distinguish itself from different suppliers available in the market.
One in all ARMO’s foremost opponents is Aqua Trivy, which may scan containerized environments for vulnerabilities whereas providing automated compliance monitoring and runtime safety for Kubernetes workloads. Aqua Safety is presently valued at $1 billion.
One other competitor is Checkov, a command-line primarily based instrument designed to run infrastructure as code scans on Kubernetes, Terrafor, CloudFormation, Helm and ARM Templates. Palo Alto Networks acquired Checkov’s guardian firm Bridgecrew for an undisclosed quantity in March 2021.
Via using generative AI and ChatGPT, ARMO hopes to distinguish itself from different suppliers by augmenting the coding data of customers to allow them to extra confidently implement Kubernetes safety controls.
