Cloud Native Live: SLSA with Cosign and Kyverno to secure software delivery

CNCF Online Programs

Wednesday, October 20, 2021, 4:00 – 5:00 PM UTC

Virtual event

About this event

Software supply chain attacks have increased 650% in 2021! The Supply chain Levels for Software Artifacts (SLSA, pronounced “salsa”) framework for security and integrity of software artifacts through a supply chain provides detailed guidelines on securing a software supply chain. In this livestream, Jim will discuss SLSA, and then demonstrate how you can take an insecure image and add signing and verification of the image using Cosign and Kyverno to comply with SLSA guidelines.

Speaker

  • Jim Bugwadia

    Nirmata

    Co-Founder and CEO

Organizers

  • Ihor Dvoretskyi

    Cloud Native Computing Foundation

    Organizer

  • Kristi Tan

    CNCF

    Organizer

  • Chris Aniszczyk

    Linux Foundation (CNCF)

    Organizer

  • Libby Schulze

    CNCF

    Organizer

CONTACT US