Explore the innovative approach to supply chain security in WebAssembly (Wasm) package distribution through this informative conference talk. Delve into the development of 'warg', a new registry protocol for Wasm packages spearheaded by the Bytecode Alliance. Learn how this protocol implements "Package Transparency" by leveraging verifiable data structures from Certificate Transparency, enabling full registry state validation, easy replication, and quick detection of operator compromise. Gain insights into the potential advancements in code portability and security offered by WebAssembly, and understand the critical role of secure publishing and distribution methods in realizing its full potential.
Package Transparency for WebAssembly Registries
CNCF [Cloud Native Computing Foundation] via YouTube
Overview
Syllabus
Package Transparency for WebAssembly Registries - Kyle Brown, SingleStore
Taught by
CNCF [Cloud Native Computing Foundation]