YoVDO

State of the Art Supply Chain Security - In-toto, TUF, and SigStore

Offered By: CNCF [Cloud Native Computing Foundation] via YouTube

Tags

Conference Talks Courses Software Development Courses Cybersecurity Courses Supply Chain Security Courses Sigstore Courses in-toto Courses

Course Description

Overview

Save Big on Coursera Plus. 7,000+ courses at $160 off. Limited Time Only!
Explore the state-of-the-art supply chain security in this 32-minute conference talk from CNCF's KubeCon + CloudNativeCon Europe 2022. Delve into the complementary roles of TUF, in-toto, and SigStore in creating a transparent, hack-proof software supply chain that prevents man-in-the-middle attacks between developers and end-users. Learn about Datadog's pioneering implementation of in-toto and TUF for secure updates, and discover how SigStore's transparent and auditable model enhances publisher accountability. Witness a real-world demonstration of the entire security stack in action through Datadog's integration, and gain insights on easy adoption strategies. The presentation covers key topics including the problem at hand, Six Store, software supply chain intricacies, a practical demo, and a comprehensive security analysis.

Syllabus

Intro
The Problem
Six Store
Software Supply Chain
Demo
Security Analysis


Taught by

CNCF [Cloud Native Computing Foundation]

Related Courses

Building Geospatial Apps on Postgres, PostGIS, & Citus at Large Scale
Microsoft via YouTube Unlocking the Power of ML for Your JavaScript Applications with TensorFlow.js
TensorFlow via YouTube Managing the Reactive World with RxJava - Jake Wharton
ChariotSolutions via YouTube What's New in Grails 2.0
ChariotSolutions via YouTube Performance Analysis of Apache Spark and Presto in Cloud Environments
Databricks via YouTube