Calgary

Customers
/
Calgary

Calgary Public Library keeps credentials & secrets safe with Nightfall

Founded in 1912, Calgary Public Library has grown to become the second largest library system in Canada, and sixth largest municipal library system in North America. Its 21 locations throughout the city serve over 700,000 members and 6 million visitors each year.

Industry
Education
Integrations
Github
Region
Calgary, Canada
On this page

‍Challenge

  • While moving its code repositories to the cloud, Calgary Library's IT team realized it had a security gap in that it could not scan code for secrets and credentials quickly enough to prevent data leak risk.

Solution

  • Nightfall's high accuracy detection of API keys and automation capabilities allowed Calgary Library's IT team to confidently find and remove secrets in GitHub at scale.

Cleaning up code after migrating to the cloud

With COVID-19, Calgary Public Library’s services and resources have become even more important. The library provides free access to books, media e-resources, and programs to its patrons via their website, making it easy for people to stay active and connected through the library’s virtual portals. Calgary Public Library’s IT team has a huge task in keeping the website and online resources functional for library patrons, while protecting business-critical data in their code repositories. They rely on Nightfall DLP for GitHub for their data loss prevention (DLP) needs.      

Anton Chuppin, Calgary Public Library’s IT Interfaces Group Manager, led a project for his team to migrate their code repository from an on-premises Subversion server to GitHub. Right away, Anton saw a big problem that could expose the entire organization’s sensitive data in the migration.

“We needed to make sure we are not storing any secrets in the code,” says Anton. “The only way to do this reliably was to proactively screen the code for potential secrets.”   

The Calgary Public Library IT team needed a DLP solution that could detect and classify secret data like login credentials and API keys. That’s when Anton looked into Nightfall.    

“Nightfall was the quickest and easiest way for us to guarantee we are not committing any passwords, API keys, or other sensitive information to our GitHub repositories.”
Anton Chuppin
Manager, IT Interfaces Group

Keeping secrets safe in the cloud with Nightfall

Anton and his team needed a solution that’s easy to use and fast to set up. Nightfall Radar’s simple point and click dashboard along with its robust REST API provides that versatility for the Calgary Public Library team. Through the Radar platform, they integrate Nightfall’s ability to scan for hundreds of types of secrets and credentials directly into their custom workflows. “This allows us to use Nightfall when and where we want across our code repos in GitHub,” Anton says.  

With Nightfall for GitHub automatically scanning for data that could leak, Calgary Public Library doesn’t have to worry about exposing data that could compromise their systems. Nightfall’s deep learning based detectors deliver higher accuracy & fewer false positives than traditional approaches. Overall, the IT team has seen a big jump in productivity and confidence in their security. “Our programmers can sleep better at night,” says Anton. “Now we can spend our time developing enterprise applications instead of custom solutions to lint our code for secrets.”

“We have confidence that our code committed to GitHub doesn't contain confidential, private information.”
Anton Chuppin
Manager, IT Interfaces Group

Calgary’s community needs can change quickly as we all adapt to the uncertainty of COVID-19. An elastic cloud-native DLP solution like Nightfall Radar keeps Calgary Public Library’s much-needed services online for everyone.

Building a better cloud security stack

The IT world is moving even faster as cloud adoption is exploding. Calgary Public Library has to move and pivot rapidly to meet the needs of their community and patrons, so Nightfall Radar’s fast implementation in GitHub is the best feature for Anton’s team.  

“The speed of development has been much quicker than I expected,” he says. “It's great to have the features implemented even before you realize you need or want them.”   

Anton found the right solution to integrate into Calgary Public Library’s cloud security stack. “DLP is a problem that has a very narrow margin of error,” Anton says. “Nightfall Radar solves the DLP problem very well. We are happy to have a tried and tested solution instead of coming up with one on our own.”  

“Nightfall saves us many hours of development by working across all our projects with minimal time spent on configuration.”
Anton Chuppin
Manager, IT Interfaces Group

With Nightfall for GitHub in place to handle the organization’s DLP needs, now the IT team can focus on making the website and other e-resources even better for library patrons. Which means a lot for the Calgary community.    

Read more Customer Stories

#21ae68
Discover how Nightfall streamlined secrets and keys detection in GitHub for Klaviyo
quote mark
By preventing sensitive data from reaching our code repositories, we reduce the chances of data exposure. For us, DLP is the ability to reduce risk for the company and allows us to build customer trust.
Read Case Study
Shaun DeWitt
Shaun DeWitt
Director of Security Operations
#0e172f
Learn how this confidential health tech company is ensuring it maintains HIPAA compliant with automated protection in Slack & GitHub
quote mark
Nightfall’s ease of setup and accuracy of identified data are both on point. Nightfall has eased our collective mind.
Read Case Study
Head of Security and Compliance
Nightfall Mini Logo

Getting started is easy

Install in minutes to start protecting your sensitive data.

Get a demo
Nightfall Brand Logo
Newsletter

Subscribe to our newsletter to receive the latest content and updates from Nightfall

Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.

By registering, you agree to the processing of your personal data by Nightfall as described in the Privacy Policy.

Compatible with
Hipaa logo
HIPAA
PCI-DSS logo
PCI
CCPA Logo
GDPR/CCPA
SOC 2 Logo
SOC 2

© 2024 Nightfall. All Rights Reserved.

Terms of ServicePrivacy PolicySecurity
Twitter LogoFacebook LogoInstagram LogoLinkedIn Logo