Anchore: DreamFactory Achieves 75% Time Savings with Anchore: A Case Study in Secure API Generation

Source URL: https://anchore.com/blog/dreamfactory-air-gap-on-prem-anchore-enterprise-case-study/
Source: Anchore
Title: DreamFactory Achieves 75% Time Savings with Anchore: A Case Study in Secure API Generation

Feedly Summary: As the popularity of APIs has swept the software industry, API security has become paramount, especially for organizations in highly regulated industries. DreamFactory, an API generation platform serving the defense industry and critical national infrastructure, required an air-gapped vulnerability scanning and management solution that didn’t slow down their productivity. Avoiding security breaches and compliance failures […]
The post DreamFactory Achieves 75% Time Savings with Anchore: A Case Study in Secure API Generation appeared first on Anchore.

AI Summary and Description: Yes

Summary: The text discusses the importance of API security, particularly within regulated industries such as defense, showcasing how DreamFactory successfully implemented Anchore Enterprise to improve their security posture. The case study highlights the challenges of working in air-gapped environments and emphasizes the significance of meeting compliance requirements while maintaining operational efficiency.

Detailed Description: This case study outlines the critical challenges and solutions related to API security faced by DreamFactory, a platform serving clients in sensitive industries. The details encapsulate the importance of adhering to security and compliance standards, particularly when handling data with national security implications.

* Key Points:
– **API Security Importance**: As APIs gain prominence in the software industry, security measures become essential, especially for organizations in heavily regulated sectors.
– **Challenges**:
– **Secure Deployments**: Clients such as the Department of Defense required on-premises solutions that avoided direct cloud connectivity.
– **Air-Gapped Security**: Comprehensive vulnerability scans were needed even in air-gapped environments to protect sensitive data.
– **Trust Building**: Establishing trust quickly in high-stakes environments was necessary due to the severe consequences of potential breaches.
– **Solution Implemented**: DreamFactory utilized Anchore Enterprise, which features:
– **Support for On-Prem and Air-Gapped Environments**: This aligns with the operational requirements of DreamFactory’s defense clients.
– **Comprehensive Vulnerability Scanning**: Daily checks on deployment versions were integrated into the build pipeline.
– **SBOM Management**: Creation and management of Software Bill of Materials (SBOM) for transparency in software components.
– **Results Achieved**:
– 75% reduction in time spent on vulnerability management and compliance.
– 70% faster production deployments due to integrated security checks.
– Enhanced rapid trust development through increased transparency with customers.

The case study concludes that by utilizing Anchore Enterprise, DreamFactory has enhanced its reputation as a reliable partner for high-security API generation. It reinforces the message that achieving both robust security and operational efficiency is possible with the right tools and methodologies. This case study is a practical example for security and compliance professionals, demonstrating the impact of strategic security solutions in regulated sectors and providing insights on managing software supply chains effectively.