Improve Vulnerability Management with OCI Artifacts - It Is That Easy
Offered By: CNCF [Cloud Native Computing Foundation] via YouTube
Course Description
Overview
Discover how to enhance vulnerability management practices using OCI artifacts in this 36-minute conference talk from CNCF. Learn about the recent advancements in supply chain security, including the popularization of standard Software Bill of Materials (SBOMs) and signed attestations. Explore the challenges of efficiently utilizing SBOMs at scale and how the OCI artifacts specification elegantly solves these issues. Gain insights into signing images, storing and signing SBOMs, scan results, and other important supply chain-related attestations alongside relevant artifacts in the registry. Understand how to leverage open-source tools like Trivy, Notary, and ORAS to improve vulnerability management practices. Discover how these techniques can be applied to various OCI artifacts, including WASM, packages, and libraries.
Syllabus
Improve Vulnerability Management with OCI Artifacts -It Is That Easy! - Itay Shakury & T Mladenov
Taught by
CNCF [Cloud Native Computing Foundation]
Related Courses
Building, Signing, and Distributing SPDX SBOMs as Artifact Reference TypeLinux Foundation via YouTube Enterprise Cloud Native Artifact Registry - Advanced Features and Management
CNCF [Cloud Native Computing Foundation] via YouTube Build and Deploy Cloud Native OCI Artifacts the GitOps Way
CNCF [Cloud Native Computing Foundation] via YouTube Build and Deploy Cloud Native OCI Artifacts the GitOps Way
CNCF [Cloud Native Computing Foundation] via YouTube Distributing Supply Chain Artifacts with OCI and ORAS Artifacts
CNCF [Cloud Native Computing Foundation] via YouTube