YoVDO

Software Supply Chain Security Case Study at Anaconda

Offered By: Linux Foundation via YouTube

Tags

Software Supply Chain Security Courses Cybersecurity Courses DevOps Courses Software Architecture Courses Sigstore Courses in-toto Courses The Update Framework Courses

Course Description

Overview

Save Big on Coursera Plus. 7,000+ courses at $160 off. Limited Time Only!
Explore a real-world case study on securing a large-scale open-source packaging pipeline in this 43-minute conference talk. Gain insights into the architecture of an open-source package build pipeline, from acquisition to installation, and learn about common gaps and attacks. Discover the concrete steps taken to overcome real challenges encountered and the positive outcomes achieved. Understand how respected open-source security designs like The Update Framework, Sigstore, and in-toto were utilized, and how the Supply chain Levels for Software Artifacts (SLSA) framework was employed to organize and drive security improvement efforts. Conclude with valuable guidance for implementing similar security measures in your own organization's software supply chain.

Syllabus

Software Supply Chain Security Case Study at Anaconda - Sebastien Awwad, Anaconda


Taught by

Linux Foundation

Tags

Related Courses

Toto-Ally TUF: Simple Tools for a Secure Software Supply Chain
Linux Foundation via YouTube Securing the Container Supply Chain with Notary, TUF, and Gatekeeper
Linux Foundation via YouTube Improving Package Repository Security - From White Papers to Practice
Linux Foundation via YouTube Container Security: Supply Chain, Authorization, and Runtime Protection
Docker via YouTube Using Docker Content Trust with Kubernetes Admission Controllers to Secure Runtime
Docker via YouTube