Improve Vulnerability Management with OCI Artifacts - It Is That Easy
Offered By: CNCF [Cloud Native Computing Foundation] via YouTube
Course Description
Overview
Discover how to enhance vulnerability management practices using OCI artifacts in this 36-minute conference talk from CNCF. Learn about the recent advancements in supply chain security, including the popularization of standard Software Bill of Materials (SBOMs) and signed attestations. Explore the challenges of efficiently utilizing SBOMs at scale and how the OCI artifacts specification elegantly solves these issues. Gain insights into signing images, storing and signing SBOMs, scan results, and other important supply chain-related attestations alongside relevant artifacts in the registry. Understand how to leverage open-source tools like Trivy, Notary, and ORAS to improve vulnerability management practices. Discover how these techniques can be applied to various OCI artifacts, including WASM, packages, and libraries.
Syllabus
Improve Vulnerability Management with OCI Artifacts -It Is That Easy! - Itay Shakury & T Mladenov
Taught by
CNCF [Cloud Native Computing Foundation]
Related Courses
Container Image Security- What It Is and How to Remediate VulnerabilitiesMirantis via YouTube Open Source Security Scanner - Docker Image Analysis with Trivy
Linode via YouTube Hands-on Introduction to Trivy - Continuous Scanning for Container Security
Rawkode Academy via YouTube GitOps - The Magic Key to Cloud Native Security
CNCF [Cloud Native Computing Foundation] via YouTube Cloud Native Deployments in Air Gapped Environments
CNCF [Cloud Native Computing Foundation] via YouTube