YoVDO

OmniBOR: Bringing the Receipts for Supply Chain Security

Offered By: CNCF [Cloud Native Computing Foundation] via YouTube

Tags

Supply Chain Security Courses Software Security Courses Vulnerability Management Courses Software Bill of Materials Courses SPIFFE Courses SPIRE Courses

Course Description

Overview

Save Big on Coursera Plus. 7,000+ courses at $160 off. Limited Time Only!
Explore the innovative OmniBOR approach to supply chain security in this 31-minute conference talk by Frederick Kautz from SPIFFE/SPIRE. Discover how to overcome common challenges like false positives from SBOM scanners and time-consuming vulnerability verifications. Learn about a groundbreaking method for capturing the complete artifact dependency graph of your software as a direct output from build tools, rather than relying on post-build scans. Gain insights into the future of build tool integration and how this new approach can revolutionize your software security practices, saving time and improving accuracy in identifying real vulnerabilities.

Syllabus

OmniBOR: Bringing the Receipts for Supply Chain Security - Frederick Kautz, SPIFFE/SPIRE


Taught by

CNCF [Cloud Native Computing Foundation]

Related Courses

Introducción a SPIFFE y SPIRE - Autenticando servicios nativos de la nube
Ekoparty Security Conference via YouTube Road to SLSA3 - Non-falsifiable Provenance in Tekton with SPIFFE/SPIRE
Linux Foundation via YouTube Zero-Trust Supply Chain Security with Sigstore, TektonCD and SPIFFE
Linux Foundation via YouTube How SPIFFE Helps Istio in Service Mesh Federation
Linux Foundation via YouTube Trust No System: The Unsettling Reality of Zero Trust
CNCF [Cloud Native Computing Foundation] via YouTube