Class Central is learner-supported. When you buy through links on our site, we may earn an affiliate commission.

Linux Foundation

Securing the Container Supply Chain with Notary, TUF, and Gatekeeper

Linux Foundation via YouTube

Overview

Explore container supply chain security in this 27-minute conference talk by Katie Novotny and Diego Casati from Microsoft. Delve into the importance of securing processes and controlling container workflows in light of recent software supply chain vulnerabilities. Learn about digital signatures as a method to ensure code integrity and compare various options for signing container images. Follow a demonstration using Notary, an open-source project based on The Update Framework (TUF), Gatekeeper, a customizable admission webhook for Kubernetes, and Ratify, a workflow engine for supply chain object verification. Discover how to implement these technologies in a typical CI/CD process and enforce policies in Kubernetes clusters. Gain insights into protecting your container deployments from potential malicious code intrusions.

Syllabus

Never Break the Chain: Securing the Container Supply Chain with... - Katie Novotny & Diego Casati

Taught by

Linux Foundation

Reviews

Start your review of Securing the Container Supply Chain with Notary, TUF, and Gatekeeper

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Someone learning on their laptop while sitting on the floor.