YoVDO

Securing the IaC Supply Chain

Offered By: CNCF [Cloud Native Computing Foundation] via YouTube

Tags

Infrastructure as Code Courses DevSecOps Courses Supply Chain Security Courses Sigstore Courses Crossplane Courses SLSA Courses

Course Description

Overview

Save Big on Coursera Plus. 7,000+ courses at $160 off. Limited Time Only!
Explore the critical topic of securing Infrastructure as Code (IaC) supply chains in this informative conference talk. Delve into the application of software supply chain security principles to modern IaC pipelines, as presented by Jesse Sanford from Autodesk and Jason Hall from Chainguard. Learn about the potential threats to IaC ecosystems and how DevSecOps practitioners can leverage patterns and practices from projects like SLSA. Discover the design changes to the Crossplane package management system and its integration with Sigstore, enabling IaC provenance and attestations. Witness a demonstration of "admission control" for IaC, providing inspiration for further advancements in Secure IaC Supply Chains. Gain valuable insights into protecting your infrastructure orchestration and staying ahead of potential supply chain attacks in the rapidly evolving landscape of cloud-native technologies.

Syllabus

Securing the IaC Supply Chain - Jesse Sanford, Autodesk & Jason Hall, Chainguard


Taught by

CNCF [Cloud Native Computing Foundation]

Related Courses

Introduction to Crossplane - Cloud Native Infrastructure Management
Rawkode Academy via YouTube Platform Engineering on Kubernetes
GOTO Conferences via YouTube Crossplane - Unifying Cloud Service Provisioning and Management - Mirantis Labs Tech Talks
Mirantis via YouTube Enabling Developers in a Multi-Cloud World
GOTO Conferences via YouTube Enable Developer Self-Service Using Kubernetes and Control Planes Powered by Crossplane
Linux Foundation via YouTube