YoVDO

Securing the Container Supply Chain with Notary, TUF, and Gatekeeper

Offered By: Linux Foundation via YouTube

Tags

Container Security Courses Kubernetes Courses CI/CD Courses Notary Courses The Update Framework Courses

Course Description

Overview

Save Big on Coursera Plus. 7,000+ courses at $160 off. Limited Time Only!
Explore container supply chain security in this 27-minute conference talk by Katie Novotny and Diego Casati from Microsoft. Delve into the importance of securing processes and controlling container workflows in light of recent software supply chain vulnerabilities. Learn about digital signatures as a method to ensure code integrity and compare various options for signing container images. Follow a demonstration using Notary, an open-source project based on The Update Framework (TUF), Gatekeeper, a customizable admission webhook for Kubernetes, and Ratify, a workflow engine for supply chain object verification. Discover how to implement these technologies in a typical CI/CD process and enforce policies in Kubernetes clusters. Gain insights into protecting your container deployments from potential malicious code intrusions.

Syllabus

Never Break the Chain: Securing the Container Supply Chain with... - Katie Novotny & Diego Casati


Taught by

Linux Foundation

Tags

Related Courses

Using Docker Content Trust with Kubernetes Admission Controllers to Secure Runtime
Docker via YouTube
Security Update: LinuxKit, Security Scanning, and Notary - Moby Summit
Docker via YouTube
Securing the Software Supply Chain with TUF and Docker - Protecting Against Distribution Attacks
Docker via YouTube
Improve Vulnerability Management with OCI Artifacts - It Is That Easy
CNCF [Cloud Native Computing Foundation] via YouTube
TUF-En Up Your Signatures - Enhancing Software Distribution Security
CNCF [Cloud Native Computing Foundation] via YouTube