Security Nutrition Labels for Cloud Native Projects
Offered By: CNCF [Cloud Native Computing Foundation] via YouTube
Course Description
Overview
Explore the concept of Security Nutrition Labels for cloud native projects in this 20-minute conference talk by John Kinsella from Accurics. Discover how these labels, inspired by similar initiatives in privacy and IoT, can effectively communicate the security implications of open-source software. Learn about the framework for creating and publishing security nutrition labels, allowing users to quickly assess potential risks. Examine examples from projects like Telepresence, Terrascan, and Linkerd to understand how these labels can be implemented in real-world scenarios.
Syllabus
Intro
History
Apple App Store
Why is this needed?
Security Label Goals
Front of Package Labels
Label Contents
Example - telepresence
Example - terrascan
Example - linkerd
Example - label
Taught by
CNCF [Cloud Native Computing Foundation]
Related Courses
Building on Microsoft Sentinel PlatformMicrosoft via YouTube Securing Applications and Infrastructure on Kubernetes with Sysdig
Mirantis via YouTube Container Escape in 2021
Hack In The Box Security Conference via YouTube Running at Light Speed - Cloud Native Security Patterns
LASCON via YouTube Controlled Mayhem With Cloud Native Security Pipelines
OWASP Foundation via YouTube