Insung Digital (CEO Seungpil Cho), a specialized IT solutions distribution company, announced on the 23rd that it has signed a domestic distribution agreement with Sonatype, a global software supply chain security company. Through this agreement, Insung Digital will supply its open source management and security platform in Korea and expand its business to include security at the application development stage.
In recent software development environments, the widespread use of various open source libraries has heightened the importance of managing security risks that may arise during the development process. In particular, with growing concerns about supply chain attacks targeting open source components, systematic security management from the early stages of development is becoming increasingly necessary.
The domestic policy environment is also shifting, focusing on strengthening software supply chain security. Along with discussions on reforming the national network security system, a data criticality-based security management system is being promoted. Furthermore, mandates for submitting software material specifications are expanding, particularly in the public sector, in accordance with Korea Internet & Security Agency guidelines.
To address these market and policy changes, Insung Digital plans to provide Sonatype's core solutions in Korea. These include the Nexus Repository, which centrally manages binary artifacts; the Repository Firewall, which preemptively analyzes and blocks external open source packages; the Lifecycle, which automatically applies security policies throughout the development process; and the SBOM Manager, which supports the creation of SBOMs based on international standards.
With this distribution agreement as a momentum, Insung Digital plans to create a safe open source environment by expanding its technical support, education, and marketing efforts, along with raising security awareness among domestic companies and developers.
- See more related articles
You must be logged in to post a comment.