Dan Lorenc, co-founder and CEO of Chainguard, joins host Priyanka Raghavan to discover Sigstore and its position in securing the software program provide chain. They unpack the challenges of provide chain safety, together with verifying the origin and integrity of software program artifacts, and clarify the issues Sigstore is designed to resolve. The dialog goes below the hood to look at how Sigstore works, protecting key elements reminiscent of code signing, verification, the certificates authority mannequin, and transparency logs—usually in contrast conceptually to blockchain for his or her auditability. The episode additionally highlights real-world adoption, group assets for getting began, and closes with a dialogue of Chainguard Photographs and the way growth groups can use them to construct with safer base photos.
Dropped at you by IEEE Pc Society and IEEE Software program journal.
This episode is sponsored by IEEE Pc Society