YoVDO

The Chain of Trust - Towards SLSA L3 with Tekton Trusted Artifacts

Offered By: CNCF [Cloud Native Computing Foundation] via YouTube

Tags

Software Supply Chain Security Courses Tekton Courses Artifact Management Courses Sigstore Courses Cloud-Native Security Courses in-toto Courses SLSA Courses

Course Description

Overview

Save Big on Coursera Plus. 7,000+ courses at $160 off. Limited Time Only!
Explore the critical aspects of securing software supply chains in this 40-minute conference talk from the Cloud Native Computing Foundation (CNCF). Dive into Tekton's implementation of trusted resources, provenance, and Sigstore integration to combat the rising threat of supply chain attacks. Learn about the Data Interface SIG's efforts to provide first-class support for artifacts while adhering to key standards like SLSA, in-toto, and CDEvents. Discover the design of new artifact-related features and gain insights into the project roadmap. Understand how to secure artifacts in Tekton and contribute to discussions on enhancing software supply chain security. Join Jerop Kipruto from Google and Andrea Frittoli from IBM as they share successes, lessons learned, and strategies for preserving the chain of trust in build systems.

Syllabus

The Chain of Trust: Towards SLSA L3 with Tekton Trusted Artifacts - Jerop Kipruto & Andrea Frittoli


Taught by

CNCF [Cloud Native Computing Foundation]

Related Courses

Securing Your Infrastructure as Code Pipeline
Linux Foundation via YouTube Toto-Ally TUF: Simple Tools for a Secure Software Supply Chain
Linux Foundation via YouTube Software Supply Chain Security Case Study at Anaconda
Linux Foundation via YouTube Container Security: Supply Chain, Authorization, and Runtime Protection
Docker via YouTube In-Toto: Attestations and Software Supply Chain Security
CNCF [Cloud Native Computing Foundation] via YouTube