By Tracy Miranda, Chainguard
SigstoreCon aims to help accelerate how you secure your software supply chain. The great news is that this is a vendor-neutral conference organized by the open source Sigstore community and will focus on all things Sigstore.
There will be 14 different companies speaking at the event, including Autodesk, Chainguard, Cycode, Datadog, Edgeless Systems, GitHub, Google, IBM Research, InfluxData, Nirmata, Red Hat, Trail of Bits, Upgrade, and VMware.
In the one-day program you’ll find:
- 9 sessions
- 4 lightning talks
- 3 keynotes
- 1 award ceremony (first-ever Sigstore Awards!)
The most exciting part is that there are already folks using Sigstore. Don’t miss these real-world case studies:
- Enforcing Image Signing at Upgrade — Christopher Sullivan, Upgrade
- Platform Driven Compliance With Sigstore at Autodesk – Jesse Sanford, Autodesk
- Verifiable Build Environments in the Cloud: Powered by Sigstore and Enclaves — Fabian Kammel, Edgeless Systems
View the full program on the SigstoreCon website.
Sigstore is a standard for signing, verifying, and protecting software. Sigstore ensures that your software is all that it claims to be for developers and end users.
Building and distributing software that is secure throughout its entire lifecycle can be challenging, leaving many projects at risk or unprepared. Attacks and vulnerabilities can emerge at any step of the supply chain: from writing the software to packaging and distributing to end users. Sigstore was developed to improve the integrity of the software supply chain, reducing the friction developers face in implementing security within their daily work. Open source communities and enterprise organizations in the cloud native space are rapidly adopting Sigstore to support their security goals.
Register for SigstoreCon now to learn more about how you can get involved.