YoVDO

SBOMs, VEX, and Kubernetes - Software Supply Chain Security in Cloud Native Environments

Offered By: CNCF [Cloud Native Computing Foundation] via YouTube

Tags

Software Supply Chain Security Courses Kubernetes Courses Critical Infrastructure Security Courses Container Security Courses Cloud-Native Security Courses Software Bill of Materials Courses SPDX Courses

Course Description

Overview

Save Big on Coursera Plus. 7,000+ courses at $160 off. Limited Time Only!
Explore the critical aspects of software supply chain security in this 36-minute panel discussion from the Cloud Native Computing Foundation (CNCF). Dive into the world of Software Bill of Materials (SBOMs), Vulnerability Exploitability Exchange (VEX), and their applications in Kubernetes environments. Learn from industry experts as they discuss standardization efforts around CycloneDX and SPDX formats, and examine the emerging role of VEX in determining vulnerability exploitability. Gain practical insights into gathering, using, and handling SBOMs for containers running on Kubernetes and the underlying images. Discover use cases spanning open source projects, vendors, cloud providers, and highly regulated environments such as financial services and critical national infrastructure. Benefit from the deep expertise of panelists in SBOMs, VEX, supply chain security, and cloud native application security to enhance your understanding of these crucial topics in modern software development and deployment.

Syllabus

SBOMs, VEX, and Kubernetes


Taught by

CNCF [Cloud Native Computing Foundation]

Related Courses

SPDX 3.0 Overview - Introduction to Software Package Data Exchange
Linux Foundation via YouTube
Software Part Catalog Management for Successful SBOM Creation
Linux Foundation via YouTube
Our Journey to Open Source - From a Conservative Japanese Company
Linux Foundation via YouTube
SW360 SBOM - Managing Vulnerability Information, SPDX Documents and Dependency Networks
Linux Foundation via YouTube
OpenDataology: Fixing Dataset Licensing for AI - A Call to Arms
Linux Foundation via YouTube