Loading…
June 26-27, 2024 | Seattle, WA
View More Details | Registration Information

The Sched app allows you to build your schedule but is not a substitute for your event registration. You must be registered for CloudNativeSecurityCon North America 2024 to participate in these sessions. If you have not registered but would like to join us, please go to the event registration page to purchase a registration.

Please note: This schedule is automatically displayed in Pacific Daylight Time (PDT), UTC -7. To see the schedule in your preferred timezone, please select from the drop-down menu to the right, above "Filter by Date."

The schedule is subject to change.
← Back to schedule
Sigstore: Past, Present and Future Directions - Luke Hinds, Stacklok & Bob Callaway, Google
Wednesday June 26, 2024 11:50am - 12:25pm PDT
445
Sigstore was founded in 2021 to make it easier for developers to sign and verify their software artifacts. Since then, the project has become the de facto approach to code signing for OSS, and has been adopted by major cloud native projects including Kubernetes and Helm, and by npm to sign SLSA provenance statements. Today, Sigstore has over 58 repos spanning many libraries (including Go, Rust, and JavaScript), and provides a public good service staffed by community SREs.

During this talk, Sigstore founders Luke Hinds (Stacklok) and Bob Callaway (Google) will discuss the origins of Sigstore and their experience growing a large community. They'll discuss ongoing work to integrate Sigstore into Homebrew, PyPI, and Maven Central, as well as Sigstore roadmap priorities and where they see the project heading in the future.
Speakers
avatar for Bob Callaway

Bob Callaway

Engineer, Google
Bob is the tech lead & manager of the supply chain integrity group in Google's Open Source Security Team. He and his team directly contribute to critical OSS secure software supply chain projects (including Sigstore that he co-founded), as well as help drive adoption of best practices... Read More →
avatar for Luke Hinds

Luke Hinds

CTO, Stacklok, Stacklok, Inc
Luke Hinds is a software engineer living in the UK. Luke is focused on building the next generation of software supply chain security solutions at Stacklok, Inc, where he is the CTO. He is a member of the OpenSSF Board and founded the sigstore project. He has held numerous community... Read More →
Wednesday June 26, 2024 11:50am - 12:25pm PDT
445
  Supply Chains + Containers + Application Security
Feedback form is now closed.

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Tweet Share
Share Modal

Share this link via

Or copy link