Attending this event?
Back To Schedule
Friday, January 28 • 3:00pm - 3:50pm
Use sigstore to secure your software supply chain

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Sigstore (sigstore.dev) is a collection of young, rapidly growing open source projects in the secure software supply chain space that combine transparency logs, digital identity & attestation technologies, and policy artifacts to enhance the security of software artifacts through the entire development/deployment lifecycle. This talk will include an overview of the projects that make up sigstore, brief demos showing how the different projects interoperate, a survey of current adopters, as well as a review the of project roadmaps for further integration and adoption in the OSS landscape.

Session chairs: Zdenek Dohnal and Lubomir Terifaj


Bob Callaway

Tech Lead, Open Source Security Team, Google
Bob Callaway is a Tech Lead / Manager in Google's Open Source Security Team, focused on Secure Software Supply Chain efforts. Prior to joining Google, he worked at Red Hat on emerging technology strategy with strategic partners, at NetApp on OpenStack and storage automation, as well... Read More →

Friday January 28, 2022 3:00pm - 3:50pm CET
Session Room 3