Atlassian recently added IP whitelisting and two-step verification to Bitbucket, its cloud-based version control system, to give administrators stronger controls on who can view, push, or clone a private code repository.

The first step in information security is to identify the crown jewels — the information that, if stolen, will be critically damaging to the organization — then make sure they are protected. For many, that means restricting who has access to the code repository containing the application source code.

Atlassian actually added two-step verification as an optional feature to Bitbucket back in 2015. The current change gives administrators the ability to require developers to use two-step verification in order to access restricted repositories. This way, the administrators can enforce the level of security required instead of leaving it up to individual developers.

To read this article in full or to leave a comment, please click here

Source: Security