SLSA and FRSCA - Securing the Software Supply Chain
CNCF [Cloud Native Computing Foundation] via YouTube
Overview
Explore the critical importance of software supply chain security in this 40-minute conference talk by Christopher Hanson from RX-M, llc. Dive into the Supply-chain Levels for Software Artifacts (SLSA) framework, understanding its key components: tracks, levels, and requirements. Learn how to implement and assess the security of software development and distribution processes using open-source tools from the Factory for Repeatable Secure Creation of Artifacts (FRSCA) reference implementation. Gain practical insights on iteratively achieving higher SLSA build levels and develop a vocabulary for setting improvement goals within your organization's software security practices.
Syllabus
SLSA and FRSCA: Beyond Snacks and Soda! - Christopher Hanson, RX-M, llc.
Taught by
CNCF [Cloud Native Computing Foundation]