YoVDO

Securing Kubernetes Manifests with Sigstore Cosign - Options and Best Practices

Offered By: Linux Foundation via YouTube

Tags

Kubernetes Courses GitOps Courses Software Supply Chain Security Courses Kyverno Courses Flux Courses

Course Description

Overview

Save Big on Coursera Plus. 7,000+ courses at $160 off. Limited Time Only!
Explore options for verifying Kubernetes manifests with Sigstore Cosign before cluster application in this informative conference talk. Learn how Sigstore Cosign integrates with Kubernetes to provide secure solutions for signing and verifying container images, resource manifests, configuration files, and other critical components bundled as generic OCI images. Discover the use of GitOps tools like FluxCD and policy engines such as Kyverno and Gatekeeper in combination with Sigstore Cosign to enforce security policies and prevent unwanted cluster changes. Gain valuable insights into software supply chain security, container image workflows, and cluster policies. Suitable for both experienced Kubernetes users and beginners, this talk offers practical knowledge on securing Kubernetes deployments using Sigstore Cosign.

Syllabus

Introduction
What is Software Supply Chain
Container Image Workflow
Cosign
Kubernetes Manifest
Cluster Policy
MChart
Flex
Conclusion


Taught by

Linux Foundation

Tags

Related Courses

New Network Provisioning System Leveraging Kubernetes and Cloud Native Open Source
Linux Foundation via YouTube Deploying Cloud-Native Applications Using Kubevela and OAM - Tutorial
CNCF [Cloud Native Computing Foundation] via YouTube Kubernetes in the Enterprise - Transforming Rabobank's On-Premise Applications
CNCF [Cloud Native Computing Foundation] via YouTube GitOps Simplified - Principles and Tools for Kubernetes Deployments
CNCF [Cloud Native Computing Foundation] via YouTube Introduction to FluxCD
CNCF [Cloud Native Computing Foundation] via YouTube