Gaurav Kamathe
Gaurav is a seasoned Software Engineering professional, currently working as a Senior Product Security Architect at Red Hat. His primary interests are Security, Linux, Malware. He loves working on the command-line and is mostly interested in low-level software and understanding how things work.
Sessions
02-07
14:50
25min
Demystifying Code signing and its role in DevSecOps
Gaurav Kamathe
The Solarwinds hack made headlines by directly attacking the software supply chain. To mitigate such attacks in the future we need an automated approach to digitally signing and checking software components that verify the origins and authenticity of the software. The purpose of this talk is to introduce the audience to Code signing, its role in DevSecOps and get familiar with the sigstore project.
Security
B.3.037