JFrog Announces Private Distribution Network
May 27, 2021

JFrog announced Private Distribution Network.

A new capability of JFrog Distribution, part of the JFrog DevOps Platform, Private Distribution Network enables enterprises to easily set up and manage a secure, massively scalable hybrid distribution network for software updates.

Private Distribution Network provides two integrated network utilization and acceleration technologies – HTTP-based, secure P2P and CDN – that can be rolled out across large-scale mixed-infrastructure and multi-tiered, customizable network topologies, and are managed as-a-service with usage-based pricing.

With Private Distribution Network, enterprises can accelerate software distribution by multiple orders of magnitude to speed up deployments of application updates and of concurrent downloads of binaries across tens of thousands of environments, edges, and embedded/IoT devices.

“JFrog’s vision of Liquid Software is all about enabling the seamless and secure flow of updates from the developer’s keystrokes to any device. The end points are growing in number, creating immense challenges around infinite-scale, trusted software distribution,” said Yoav Landman, Co-Founder and CTO, JFrog. “Enterprises that struggled with delivering applications closer to the consumer edge, rolling out releases across massive runtime environments or IoT fleets can now easily accelerate and scale to meet their distribution needs with a Private Distribution Network, enabling the consumption of software as fast as possible with complete traceability and control from any source to any deployment target.”

The Challenge: Once applications are developed, software binaries and Software Bill of Materials (SBOM) need to be quickly, securely and reliably distributed – often multiple times throughout the process – over the network to the next phase in the SDLC or to the last-mile of deployment to production.

The exponential growth in edge and IoT, coupled with the increased adoption of cloud-native applications and more frequent deployments, have all created new challenges and bottlenecks for software distribution at scale — particularly when needing to release updates to thousands of environments/devices and overcoming the physical limitations of the network.

The JFrog Platform is an end-to-end, central DevOps solution that bridges the gap between delivery processes and network bottlenecks/impediments to delivery at scale, and addresses the paradigm of Software Distribution and solves for the new challenges of modern delivery at scale.

Customers can define their topology and deploy distribution nodes in a multi-layer, cascading network that serves as content cache and network optimization. These enable enterprises to accelerate software distribution, speed up deployments and handle high volume of downloads across large-scale runtime environments.

JFrog’s Private Distribution Network is designed from the ground to enable speed, trust, scale, and simplified operations:

- Support hybrid distribution – across large-scale, mixed environments spanning on-prem datacenters, cloud/multi-cloud infrastructure, edges, IoT, and embedded devices.

- Trusted distribution – ensure security, compliance and governance with immutable, signed distributed releases, validation of distributed transactions, out-of-the-box support for open source security vulnerability and licenses compliance policies, RBAC, and traceability and visibility into the source, destination, and integrity of all distributed packages and downloads.

- Improved network utilization and resiliency – with patent-pending network optimization technology and stacked layers of caching and acceleration – including for use cases requiring getting past inbound-only firewalls, or to limited-connectivity on-prem resources such as edges at factories, retail stores, and more.

- Infinitely scalable – supporting releases across large-scale infrastructure with flexibility of the deployment topology that can overcome network constraints and download spikes

- Binaries-focused package-aware distribution – to effectively manage and track the exponentially growing number of binaries across all endpoints

- Software distribution, native to DevOps – Tightly integrated with the organization’s SDLC processes, CI/CD pipelines, binary management practices, and security policies.
No management overhead and low TCO – with lightweight edge accelerators and self-service management experience (unlike DIY solutions)

- Pay-per-use pricing – across all environments, tying costs with business and infrastructure growth.

- Speed up deployments at scale – with a click of a button, companies can distribute software to any of the distribution groups across massive-scale, hybrid infrastructure and edges’ footprints.

- Support a high volume of concurrent downloads/consumption of software binaries, either by a large number of production nodes that access binaries for concurrent deployment or by the ecosystem, partners and customers. Overcoming network limitations by using groups of tens or hundreds of lightweight Distribution Nodes. HTTPs-based, firewall-friendly, customized P2P protocol is used to achieve content High Availability.

JFrog’s Private Distribution Network is currently available as a private beta, and will be generally available in Q3, 2021.

Share this

Industry News

June 14, 2021

Accurics announced a technology partnership with GitLab as well as the general availability of its integration with GitLab's Static Application Security Testing (SAST) solution.

June 14, 2021

SmartBear released new versions and add-ons of test management solution, Zephyr Enterprise, with major upgrades for businesses in critical industries.

June 14, 2021

ShiftLeft has released a tool enabling businesses to independently benchmark and validate the accuracy of ShiftLeft CORE using the Open Web Application Security Project (OWASP) Benchmark Project, a Java test suite designed to evaluate the accuracy of vulnerability detection tools.

June 10, 2021

Contrast Security announced the release of Contrast Scan that revolutionizes static application security testing (SAST) with pipeline-native static analysis to analyze code and detect vulnerabilities early on in the software development life cycle (SDLC).

June 10, 2021

CyberArk announced the availability of CyberArk Cloud Entitlements Manager, CyberArk Endpoint Privilege Manager and CyberArk Workforce Identity on Amazon Web Services Marketplace (AWS Marketplace).

June 10, 2021

Komodor announced a $21 Million Series A funding round led by Accel.

June 09, 2021

Grafana Labs announced a series of significant new product updates including the general availability of Grafana 8.0 and Grafana Tempo 1.0.

June 09, 2021

Snyk has built an integration inside the AWS CodePipeline console.

June 09, 2021

CloudBolt Software announced its Spring ‘21 release, which offers powerful new capabilities to help enterprises optimize public cloud costs, enhance governance and compliance, and streamline integrations in hybrid cloud, multi-cloud environments.

June 09, 2021

DataOps.live announced an expanded partnership with Snowflake with immediate support for Snowpark, the new developer friendly Snowflake experience now in preview.

June 08, 2021

PagerDuty announced new integrations with JFrog. The integrations with JFrog Xray and JFrog Pipelines - both part of the JFrog DevOps Platform - allow customers to observe their entire software delivery lifecycle, understanding any changes, and identifying security issues throughout the process.

June 08, 2021

Perforce Software released an enterprise-grade, cloud-based diagramming application as an extension of its Gliffy line of business.

June 08, 2021

Synopsys has acquired Code Dx, a provider of an application security risk management solution that automates and accelerates the discovery, prioritization, and remediation of software vulnerabilities.

June 07, 2021

Mifo Communications has released version 2 of their SimplicityBlocks product that lets JavaScript developers easily build universally embeddable web widgets out of web application that they have built with any front-end framework such as Angular, JQuery, React, Vue or even vanilla JS regardless of backend technology used, if any.

June 07, 2021

ShiftLeft has been accepted into the Open Source Security Foundation (OpenSSF), a cross-industry collaboration that brings together technology leaders to improve the security of OSS.