ACCELERATE YOUR PRODUCT'S JOURNEY INTO IRONBANK, THE DEPARTMENT OF DEFENSE'S CENTRALIZED ARTIFACT REPOSITORYLEARN HOW
DevSecOps adoption within the DoD and US Air Force is significantly increasing. Kubernetes and container architectures are being standardized across the application and infrastructure stacks inside the DoD. Enterprise software that can be containerized for Kubernetes can be submitted to the DoD IronBank to become part of the digital transformation and modernization solutions across DoD programs. This is an excellent opportunity for your applications to be part of this revolution.
IronBank is a groundbreaking central repository that contains authorized container images hardened to the US Department of Defense’s exacting specifications. Container images that meet these specifications are then authorized for use across the DoD and provide a continuous ATO (Authorization To Operate) for all agencies. Standardizing how agencies can quickly obtain secure versions of software required for their missions is a massive benefit for both the DoD and software providers. The repository is publicly available at dsop.io, and the images therein are built and hardened on top of the STIG’ed Red Hat Universal Binary (UBI7) Image. The container build and hardening processes are automated using purpose-built build pipelines, and provide reference images for over 170 applications cleared for DoD-wide use. This not only eliminates application patching, but also provides a robust, repeatable and scalable mechanism to build, scan and distribute application containers to the DoD.
It takes significant effort to continuously maintain and manage hardening pipelines while incorporating the evolving DoD specifications and new vulnerabilities as they arise. Even with advanced tooling and experience in-house, this can severely detract from your core mission of delivering great applications to the DoD. This is where Oteemo can help.
Leverage Our IronBank Experience
We are also honored to be one of the awardees of the recent DevSecOps Blanket Order Agreement (BOA) from DoD / US Air Force to help accelerate the adoption of DevSecOps within the Department of Defense.
As containerization and Kubernetes experts that have direct experience with building, scanning and hardening application containers for IronBank, Oteemo has the required skills, tooling and recipes to substantially increase the chances of your application being accepted into IronBank in the most optimal manner. We are intimately familiar with the hardening specifications, intake process and build pipelines, and have worked closely with DoD stakeholders and teams to provide hardened containers for multiple applications.
Following is a high-level overview of the stages through which we take your application to ensure readiness for acceptance into IronBank.
We invite you to leverage our expertise to accelerate the adoption of your applications into IronBank-hosted hardened containers. Gain an edge in DoD DevSecOps adoption with our experience and expertise.