Dates
Conferences
Tags
Sort by:
Most recent
Conference: KubeCon + CloudNativeCon North America 2022
Authors: Brandon Lum, Chris Phillips
2022-10-26
tldr - powered by Generative AI
The presentation discusses the importance of generating software bill of materials (S-BOM) and the challenges in ensuring its security against malicious actors. The speakers suggest using metadata and attestation formats to address these challenges.
- Generating S-BOM is important for software security and transparency
- Scanning and pre-populating are two ways to generate S-BOM
- Scanning has limitations in detecting malicious actors
- Metadata and attestation formats can address security challenges
- Composability is important in combining S-BOM from different ecosystems
Conference: CloudOpen 2022
Authors: Ran Regenstreif
2022-06-22
tldr - powered by Generative AI
The talk focuses on utilizing open source security tools to reduce threats and risks in cloud systems, environments, and products. The speaker emphasizes the importance of a programmatic approach to security and shifting left.
- Shift left movement empowers developers with security tools and processes
- Open source security tools are important in minimizing risks
- A broader set of risks should be considered when selecting tools
- Utilizing a toolkit and tool belt can help minimize risks
- Programmatic approach to security is crucial