Current cyberthreats make clear that the supply chain needs to be secured. However, that is a complex task. One part is the downstream propagation of vulnerability and remediation related information. This includes not only the topics mitigations and updates but also the question whether a product is affected at all. The demo will show how the underlying problem fix is easy and sustainable.


RSA® Conference, the world’s leading information security conferences and expositions, today concluded its 31st annual event at the Moscone Center in San Francisco. The year’s event attracted over 26,000 attendees, including 600+ speakers, 400+ exhibitors, and over 400 members of the media. Throughout the week, attendees networked on the expo floor and participated in keynote presentations, track sessions, tutorials, seminars, and special events.

Several of the most pressing topics discussed during this year’s Conference included issues surrounding privacy and surveillance, the positive and negative impacts of machine learning and artificial intelligence, the nuances of risk and policy, and cybersecurity-focused innovations across crypto and blockchain.

Secure Supply Chain through Automation - with CSAF, VEX and SBOM

Conference: RSA Conference 2022

Abstract

Post a comment

Related work

It's Dangerous To SLSA Alone Out There! Take This Artifact Knowledge Graph!

SBOMs, VEX, and Kubernetes

The Various Shades of Supply Chain: SBOM, N-Days and Zero Trust

Shield with Hole: New Security Mitigation Helps Us Escape Chrome Sandbox to Exfiltrate User Privacy

Breaking the Isolation: Cross-Account AWS Vulnerabilities

Github Actions Security Landscape