Improve Vulnerability Management with OCI Artifacts - It Is That Easy
Offered By: CNCF [Cloud Native Computing Foundation] via YouTube
Course Description
Overview
Discover how to enhance vulnerability management practices using OCI artifacts in this 36-minute conference talk from CNCF. Learn about the recent advancements in supply chain security, including the popularization of standard Software Bill of Materials (SBOMs) and signed attestations. Explore the challenges of efficiently utilizing SBOMs at scale and how the OCI artifacts specification elegantly solves these issues. Gain insights into signing images, storing and signing SBOMs, scan results, and other important supply chain-related attestations alongside relevant artifacts in the registry. Understand how to leverage open-source tools like Trivy, Notary, and ORAS to improve vulnerability management practices. Discover how these techniques can be applied to various OCI artifacts, including WASM, packages, and libraries.
Syllabus
Improve Vulnerability Management with OCI Artifacts -It Is That Easy! - Itay Shakury & T Mladenov
Taught by
CNCF [Cloud Native Computing Foundation]
Related Courses
Target Rich Cyber PoorBSidesLV via YouTube The A's, B's, and Four C's of Testing Cloud-Native Applications
LASCON via YouTube SBOM Challenges and How to Fix Them
BSidesLV via YouTube The Case for Software Bill of Materials
BSidesLV via YouTube Collaborating to Improve Open Source Security - How the Ecosystem Is Stepping Up
RSA Conference via YouTube