Protecting Kubernetes Resource Manifests in End-to-End Software Development Lifecycle
Offered By: OpenSSF via YouTube
Course Description
Overview
Explore the importance of protecting Kubernetes resource manifests throughout the software development lifecycle in this conference talk by Yuji Watanabe from IBM. Learn about the Integrity Shield Project and its contribution to Sigstore for YAML manifest signing. Discover how this initiative addresses integrity issues in delivery and ensures end-to-end software supply chain integrity. Gain insights into the Kubernetes Policy Working Group's efforts and the implementation of secure manifest practices in Kyverno 1.8.0. Understand the significance of signing Kubernetes manifests and how it contributes to a more secure containerized environment.
Syllabus
Intro
Kubernetes resource manifests
Why sign Kubernetes manifests?
Integrity Shield Project
Present Idea to Sigstore Community
Contribution to Sigstore (YAML Manifest Signing)
YAML Manifest Signature
Kubernetes Policy Working Group call (Feb. 2022)
Securing Kubernetes manifests - Kyverno 1.8.0
SigstoreCon 2022 @ Detroit
End-to-end supply chain
Integrity issues in delivery
End-to-end software supply chain integrity
Taught by
OpenSSF
Related Courses
Kyverno - Deep Dive - Tech TalksMirantis via YouTube Kubernetes Native Policy Management with Kyverno
Ekoparty Security Conference via YouTube Hands-on Introduction to Sigstore - Securing the Software Supply Chain
Rawkode Academy via YouTube Hands-on with Policy Reporter - Kyverno Visibility Tool
Rawkode Academy via YouTube Introduction to Kyverno - Getting Started with Kubernetes Policy Management
Rawkode Academy via YouTube