September 13-16, 2022
Dublin, Ireland + Virtual
View More Details & Registration
Note: The schedule is subject to change.

The Sched app allows you to build your schedule but is not a substitute for your event registration. You must be registered for Open Source Summit Europe 2022 to participate in the sessions. If you have not registered but would like to join us, please go to the event registration page to purchase a registration.

This schedule is automatically displayed in Irish Standard Time (UTC +1). To see the schedule in your preferred timezone, please select from the drop-down menu to the right, above "Filter by Date."

IMPORTANT NOTE: Timing of sessions and room locations are subject to change.

Back To Schedule
Wednesday, September 14 • 16:40 - 17:20
Attesting Practically: Exploring the Glue Behind Secure Runtime Environments - Jim Bugwadia, Nirmata

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Feedback form is now closed.
Attestations are rapidly gaining popularity in the software supply chain security community. But most people don’t yet have a practical understanding of how to use them to improve their existing software delivery pipelines, or how they can help you secure your runtime environments. In this talk, Jim will explore how to use Cosign, in-toto attestations, and VEX documents to act as the connective tissue between scanners and policy engines like Kyverno to create secure and auditable runtime environments. He will walk through an end-to-end flow that demonstrates how this system will allow you to react to software security threats and triage them effectively — allowing your teams to focus on critical issues and navigate through the noise and chaos.

avatar for Jim Bugwadia

Jim Bugwadia

Co-founder and CEO, Nirmata
Jim Bugwadia is a co-founder and the CEO of Nirmata, the Kubernetes policy and governance company. Jim is an active contributor in the cloud native community and currently serves as co-chair of the Kubernetes Policy and Multi-Tenancy Working Groups. Jim is also a co-creator and maintainer... Read More →

Wednesday September 14, 2022 16:40 - 17:20 IST
Wicklow Hall 2B (Level 2)
  SupplyChainSecurityCon, Countering Dependency Threats