Summit 2023 Playback
New Strategies for Signing and Verifying Container Images
Explore the latest industry approaches around signing container images, with a particular focus on how to enforce signed images in Kubernetes clusters.
Software supply chains are still in the news. At the same time, Kubernetes workloads are increasing exponentially as well as the risks of running untrusted container images. Watch to explore the latest industry approaches around signing container images, with a particular focus on how to enforce signed images in Kubernetes clusters. Then learn how you can use Sigstore cosign and Notary V2 open-source projects to sign container images to meet enterprise trust requirements. Plus, examine new ways you can verify container image signatures in Kubernetes with a demo of end-to-end signing and verification best practices.
Presenters
Ivan Wallis
Topics
- Code Signing
- Kubernetes
- Supply Chain Security
Products
- TLS Protect for Kubernetes
- CodeSign Protect
Related Resources
More than 4 out of 5 Organizations Have Endured Cloud Security Incidents
Explore how your enterprise can implement zero trust - even in a world where old cybersecurity paradigms have fallen to the wayside.
Right-Shifting Your Kubernetes Maturity: A Blueprint for Levelling Up
Adoption of Kubernetes in an impactful way is challenging. Learn how to assess and advance your level of Kubernetes maturity across six aspects.
Code Signing Maturity Assessment Overview
Learn about Venafi's Code Signing Maturity Assessment and how you can quantify the security of your organization’s code signing standards and policies.