Operations | Monitoring | ITSM | DevOps | Cloud

SBOM

kosli

Binary Provenance, SBOMs and the Software Supply Chain for Humans

Nov 5, 2024 By Mike Long In Kosli
“What’s really running in prod?” Every engineer will hear these immortal words on a long enough timeline (or career). It might be because a new security zero day was dropped, alerts fired from the depths of a vast microservice architecture, or you might just be looking to know what commit was actually tested. Either way, it often comes with the promise of a stressful day.
Read Post
Platform.sh

We can't wait for SBOMs to be demanded by regulation

Dec 13, 2023 By Joey Stanford In Platform.sh

Old ads can be startling—cigarette ads used to boast their health-giving properties, sugar-laden candy was once advertised as a dietary aid, and soft drinks were advertised as a milk alternative for babies. None of this would fly today, of course, thanks to regulations. Foods must be advertised more responsibly, and they must list their ingredients clearly on the packaging, especially allergens.

Read Post
vmware tanzu

Government Organizations Embrace Upskilling In-House IT Staff to Meet the Latest Executive Orders

Aug 2, 2023 By VMware In VMware Tanzu

This post was co-written by Nazhin Beiramee, Jazmin Childress, Kevin Clark, and Nick Weiss. Advancement in technology, along with the ever changing political landscape (e.g., the Executive Order on Transforming Federal Customer Experience and Service Delivery to Rebuild Trust in Government, as well as billions in funding to support this mandate, and a potential administration change after the 2024 election) uncover new needs, opportunities, and demands for government organizations.

Read Post
vmware tanzu

SBoMs Are Growing Up: Reflections on CISA's SBoM Conference

Jul 31, 2023 By VMware In VMware Tanzu

Last month, the Cybersecurity and Infrastructure Security Agency (CISA) organized a one-day software bill of materials (SBoM)-centric conference, both amusingly and aptly entitled SBoM-a-Rama. It was a hybrid event allowing for both in-person and remote participation; I chose the latter. As a long-term security practitioner, I’ve been observing the development of this field with great enthusiasm, but always from the periphery.

Read Post

Introduction to SBOMs - What is it and do I need one? - Cloudsmith's Unpacked Conference 2023

Jun 21, 2023 By Cloudsmith In Cloudsmith
Software Bill of Materials (SBOM) are new and exciting, but what do they actually do and do you REALLY need one? If you read any security news lately, it seems like everyone is talking about how an SBOM can solve whatever problem they have, and they are years into their SBOM journey. But many of us don’t even know what they are.
View Video

GitOps The Planet #10: Demystifying SBOMs and Their Impact on CI/CD Software Delivery

Apr 27, 2023 By Codefresh In Codefresh
Before cloud-native controlling components delivered was in some ways "easier" in that ops teams could limit which components were available on nodes. With containerization, the ops problem became harder while the dev side became easier. Now SBOMS (software bill of materials) are becoming critical to software supply chain risk management. In this episode, GitOps the Planet Alum, Christian Hernandez will join to walk us through SBOMS, how we should be using them, and how they help improve software security.
View Video

Copyright © 2024 OpsMatters™. All rights reserved.