Explore the critical security implications of CI/CD pipelines in this 17-minute conference talk from SREcon24 Americas. Discover why CI pipelines pose significant security threats due to their abundance of credentials and widespread access within organizations. Learn essential strategies for enhancing supply chain security by implementing proper branch permissions and leveraging OpenID Connect (OIDC) to minimize long-lived credentials and establish secure connections between branches and roles. Gain valuable insights from Mark P Hahn of Qualys and Ted Hahn of TCB Technologies on reducing attack surfaces and fortifying your CI/CD processes against potential vulnerabilities.
OIDC and CI/CD: Reducing Security Threats in Your CI Pipeline
Overview
Syllabus
SREcon24 Americas - OIDC and CICD: Why Your CI Pipeline Is Your Greatest Security Threat
Taught by
USENIX
Related Courses
-
Secure the Build, Secure the Cloud: Using OIDC Tokens in CI/CD Pipelines
-
Abusing OIDC Authentication for Cloud Security Vulnerabilities
-
Strengthening Defenses Against CI/CD Security Threats - Understanding and Mitigating Pipeline Vulnerabilities
-
Multi-branch Pipeline with Argo Workflows and CI/CD Debugging
-
How to Have Visibility and Security of CI/CD Ecosystem - Track 2 Session 6
-
Multi-Branch Pipeline with Argo Workflows and CI/CD Debugging
