Class Central is learner-supported. When you buy through links on our site, we may earn an affiliate commission.

Linux Foundation

Enforceable Supply Chain Security Policy with OPA Gatekeeper and Ratify

Linux Foundation via YouTube

Overview

Explore how to establish trust for container images and enforce security policies using OPA Gatekeeper and Ratify in this 36-minute conference talk. Learn about mitigating container supply chain threats through techniques like image signing and verification, policy enforcement, SBOM generation, provenance attestation, and vulnerability scanning. Discover how Ratify, built as an external data provider for Gatekeeper, enables users to enforce security policies by verifying image signatures, vulnerability reports, and SBOMs. Watch a demonstration on implementing admission control policies to ensure only compliant images are deployed, resulting in a more secure container supply chain. Gain insights from experts Feynman Zhou of Microsoft and Dahu Kuang of Alibaba Cloud on enhancing software supply chain security using these powerful tools.

Syllabus

Enforceable Supply Chain Security Policy with OPA Gatekeeper and Ratify - Feynman Zhou & Dahu Kuang

Taught by

Linux Foundation

Reviews

Start your review of Enforceable Supply Chain Security Policy with OPA Gatekeeper and Ratify

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Someone learning on their laptop while sitting on the floor.