High performance computing (HPC) infrastructure and software scanning methods and tools vary broadly across the industry. Various requirements for organizations and networks are often not aligned which can lead to gaps in cybersecurity, oversights resulting in the need for re-architecture, astronomical expenses, amongst other issues. The tool solves these issues as it provides an automated, full-scope, platform scanning, reporting, and remediation service. The tool can evaluate HPC, Hyper Converged Infrastructure (HCI), systems and software. It greatly enhances cybersecurity by pushing security left, scanning for vulnerabilities at unprecedented speeds, and automating remediation to reduce vulnerabilities for attacks. The tool is designed to meet the needs of any organization, large or small, making security easier throughout the Software Development Life Cycle (SDLC). This Small Business Innovation Research (SBIR) Phase I project will lead to the development of a first of its kind, end-to-end open-source container security platform. The tool will have embedded security while also allowing seamless integration of other tools furthering the flexibility and rigidity of security based on user preference and level of security required. Agile methods will be used during R&D to overcome the challenges naturally associated with development, security, and operations (DevSecOps) in order to prevent catastrophic delays and sunk resources. ABScan will provide the most robust applications security platform available to date. The tool can be scaled up or down as per the requirements of the HPC system, organizational needs, and/or compliance-based guidelines. The tool is not limited and can be modified to meet the needs of a wide variety of organizations, platforms, and products. Cybersecurity threats are only growing and the tool can defend against those threats making HPC systems safer and more resilient.
