In our BinAuthz webinar, Sandra Guo (Google) and Tomas Gonzalez (Synopsys) explain Black Duck’s role in the software signing process. Live May 16 @ noon ET.
Containers and Kubernetes have changed the way organizations develop and deploy applications. But with increased agility comes increased risk. The last thing any company wants is to deploy software from unknown sources or with known vulnerabilities.
Binary Authorization (BinAuthz) together with Google Kubernetes Engine (GKE) allows you to “sign” software as it moves through the software supply chain. This way, you can ensure that no software goes to production till you approve it. In this webinar, we’ll discuss the role that Black Duck software composition analysis plays in this signing process. We’ll also demonstrate how Black Duck SCA, as part of a Cloud Build workflow, can attest to the security and license compliance of a software offering, so you can deploy with confidence.
When: May 16 @ 12 p.m. Eastern / 9 a.m. Pacific
Who: Sandra Guo, product manager, Google; Tomas Gonzalez, technical alliances manager, Synopsys
*** This is a Security Bloggers Network syndicated blog from Software Integrity Blog authored by Synopsys Editorial Team. Read the original post at: https://www.synopsys.com/blogs/software-security/binauthz-webinar/