YoVDO

Back to the Drawing Board - Building Containers with SBoMs

Offered By: CNCF [Cloud Native Computing Foundation] via YouTube

Tags

Conference Talks Courses DevOps Courses Container Security Courses Artifact Management Courses

Course Description

Overview

Save Big on Coursera Plus. 7,000+ courses at $160 off. Limited Time Only!
Explore the importance of Software Bill of Materials (SBoM) in container building through this insightful conference talk. Learn about the limitations of post-build SBoM generation and discover how to create more accurate and consistent SBoMs during container build time. Dive into the basics of container construction, understand the OCI specification, and explore tools like Tern and Buildah for generating SBoMs. Gain valuable insights on improving transparency in container builds, managing artifacts, and achieving reproducible builds. Understand the challenges faced by SaaS providers in generating SBoMs and the limitations of static analyzers. Discover opportunities to get involved in this crucial aspect of container security and management.

Syllabus

Intro
What is an SBOM?
The Case For Container SBOMS
Do Saas providers need to generate SBOMS?
Why not use Static Analyzers?
Container Images have no room for metadata
Building Transparency Into Container Builds
A Starting point
Filling in the Gaps - Artifact Management
Filling in the Gaps - Reproducible builds
Where to get involved


Taught by

CNCF [Cloud Native Computing Foundation]

Related Courses

Building Geospatial Apps on Postgres, PostGIS, & Citus at Large Scale
Microsoft via YouTube
Unlocking the Power of ML for Your JavaScript Applications with TensorFlow.js
TensorFlow via YouTube
Managing the Reactive World with RxJava - Jake Wharton
ChariotSolutions via YouTube
What's New in Grails 2.0
ChariotSolutions via YouTube
Performance Analysis of Apache Spark and Presto in Cloud Environments
Databricks via YouTube