Class Central is learner-supported. When you buy through links on our site, we may earn an affiliate commission.

YouTube

Demystify Secure Software Supply Chain Metadata

Docker via YouTube

Overview

Explore the intricacies of secure software supply chain metadata in this 37-minute conference talk from DockerCon 2023. Gain clarity on key concepts like SBOMs, SLSA, provenance, attestations, signatures, and VEX, and understand how they interconnect to enhance software supply chain security. Learn to create top-tier container images with signed SBOMs and provenance attestations using Docker tools that adhere to the highest supply chain standards. Discover how Docker BuildKit, Docker Scout, and GitHub Actions can be leveraged to implement these security measures. Get insights into the White House Executive Order on software supply chain security and its implications for development teams. Dive into the principles underpinning a secure software supply chain and explore various types of metadata crucial for maintaining security standards in container images.

Syllabus

Demystify Secure Software Supply Chain Metadata (DockerCon 2023)

Taught by

Docker

Reviews

Start your review of Demystify Secure Software Supply Chain Metadata

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Someone learning on their laptop while sitting on the floor.