The Secure Container for Rapid Application Development supports rapid development and greatly reduces the process for application deployment onto secure networks.
In secure networks, applications must pass rigorous tests and gain accreditation outside the network in a development and test “sandbox.” There is no equivalent environment for cloud/distributed computing, and Secure Container was designed to fill this gap.
Secure Container includes pre-accredited application libraries that contain common functions; it deploys applications into a pre-accredited secure sandbox that tightly controls and enforces required security policies for all inter- and intra-task functionality, especially communication.
Pre-accredited applications can then be safely deployed onto trusted networks, without the delay and expense of the accreditation process.
The Secure Container enforces an object capabilities security model—a “white list” of trusted operations—on the code that powers web applications. Secure Container also enforces the white list on the client side.
Because Secure Container is certified and accredited, and because it enforces security policies and controls inter-application communication for evolving applications, the development versions of those applications can be tested safely and quickly in a relevant environment.
Secure Container reduces the time and money required to move new applications into operational settings.