The Sched app allows you to build your schedule but is not a substitute for your event registration. You must be registered for KubeCon + CloudNativeCon Europe 2024 to participate in the sessions. If you have not registered but would like to join us, please go to the event registration page to purchase a registration.
Please note: This schedule is automatically displayed in Central European Standard Time (UTC +1). To see the schedule in your preferred timezone, please select from the drop-down menu to the right, above "Filter by Date." The schedule is subject to change and session seating is available on a first-come, first-served basis.
No acronyms, just principles. In recent years, since Secure Software Supply Chain (and similar terms) entered the standard software development lexicon, it has become increasingly difficult for even subject matter experts to unpack all of the standards, tools, legislation, and more. This talk is designed to provide a lighthearted foundation for exploring and understanding the rapid-moving space of software supply chain security without using unfamiliar acronyms or expecting any expert knowledge. We will introduce principles and practices that can help to secure any software supply chain, regardless of size or infrastructure, and refer to open source projects and standards that can help achieve the principle in your own software supply chains. We’ll also introduce some common terms, so that you can bust them out in future discussions and impress your friends.
Joshua is Open Source Architect in Verizon's Open Source Program Office, where he leads efforts to improve consistency around how Verizon uses open source. As part of his work at Verizon he works upstream on software supply chain security standards and tools; he is a steering committee... Read More →
