Episode 286 - Open source supply chain with Google's Dan Lorenc
Open Source Security30 Aug 2021

Episode 286 - Open source supply chain with Google's Dan Lorenc

Josh and Kurt talk to Dan Lorenc from Google about supply chain security. What's currently going on in this space and what sort of new thing scan we look forward to? We discuss Google's open source use, Project Sigstore, the SLSA framework and more.

Show Notes

Det här avsnittet är hämtat från ett öppet RSS-flöde och publiceras inte av Podme. Det kan innehålla reklam.

Avsnitt(528)

Episode 198 - Good advice or bad advice? Hang up, look up, and call back

Episode 198 - Good advice or bad advice? Hang up, look up, and call back

Josh and Kurt talk about the Krebs blog post titled "When in Doubt: Hang Up, Look Up, & Call Back". In the world of security there isn't a lot of actionable advice, it's worth discussing if something ...

25 Maj 202033min

Episode 197 - Beer, security, and consistency; the newer, better, triad

Episode 197 - Beer, security, and consistency; the newer, better, triad

Josh and Kurt talk about what beer and reproducible builds have in common. It's a lot more than you think, and it mostly comes down to quality control. If you can't reproduce what you do, you're not a...

17 Maj 202029min

Episode 196 - Pounding square solutions into round holes: forced updates from Ubuntu

Episode 196 - Pounding square solutions into round holes: forced updates from Ubuntu

Josh and Kurt talk about automatic updates. Specifically we discuss a recent decision by Ubuntu to enable forced automatic updates. There are lessons here for the security community. We have a history...

11 Maj 202032min

Episode 195 - Is BGP actually insecure?

Episode 195 - Is BGP actually insecure?

Josh and Kurt talk about the uproar around Cloudflare's "Is BGP safe yet" site. It's always interesting watching how much people will push back on new things, even if the new things is probably a step...

4 Maj 202031min

Episode 194 - Working from home security: resistance is futile

Episode 194 - Working from home security: resistance is futile

Josh and Kurt talk about the new normal that's working away from an office. It's not exactly working from home as there are some unforeseen challenges that we just took for granted in the past. There ...

27 Apr 202031min

Episode 193 - Security lessons from space: Apollo 13 edition

Episode 193 - Security lessons from space: Apollo 13 edition

Josh and Kurt talk about space. We intended to focus on Apollo 13 but as usual we have no ability to stay on topic. There is a lot of fun space discussions in this one though. Do you think you can hac...

20 Apr 202035min

Episode 192 - Work without progress - what Infosec can learn from treadmills

Episode 192 - Work without progress - what Infosec can learn from treadmills

Josh and Kurt talk about Kurt's recent treadmill purchase and the lessons we can lean in security from the consumer market. The consumer market has learned a lot about how to interact with their custo...

13 Apr 202033min

Episode 191 - Security scanners are all terrible

Episode 191 - Security scanners are all terrible

Josh and Kurt talk about security scanners. They're all pretty bad today, but there are some things we can do to make them better. Step one is to understand the problem. Do you know why you're running...

6 Apr 202035min

Populärt inom Teknik

uppgang-och-fall
bilar-med-sladd
elbilsveckan
market-makers
natets-morka-sida
rss-laddstationen-med-elbilen-i-sverige
rss-technokratin
bli-saker-podden
skogsforum-podcast
rss-uppgang-och-fall
har-vi-akt-till-mars-an
rss-elektrikerpodden
rss-en-ai-till-kaffet
developers-mer-an-bara-kod
rss-veckans-ai
rss-sakerhetspodcasten
rss-generativet
rss-digitala-influencer-podden
rss-powerboat-sverige-podcast
rss-snacka-om-ai