Name: Securing Content Repositories with the Update Framework (TUF) - Marina Moore, NYU & Joshua Lock, VMware
Start: 2021-10-14T14:30:00-0700
End: 2021-10-14T15:05:00-0700

Back To Schedule

Securing Content Repositories with the Update Framework (TUF) - Marina Moore, NYU & Joshua Lock, VMware

Feedback form is now closed.

The Update Framework (TUF) is a framework for secure content delivery and updates that protects against many known attacks on software update systems. In this talk, Joshua Lock and Marina Moore will describe how TUF works, why content delivery systems need the protections offered by TUF, and share some recent developments in TUF and related projects. Following this introductory content, we will deep dive into proposed new features for TUF by reviewing a TUF Augmentation Proposal (TAP). Come to this talk to learn about how many organizations, including Docker, Amazon, and Google secure software updates and how you can get involved.

Speakers

Marina Moore

PhD Candidate, New York University

Marina Moore is a PhD candidate at NYU Tandon’s Secure Systems Lab researching secure software updates and software supply chain security. She is a maintainer of The Update Framework (TUF), a CNCF graduated project, as well as in-toto, an incubating project. She contributed to the... Read More →

Joshua Lock

Distinguished Engineer, Verizon

Joshua is Open Source Architect in Verizon's Open Source Program Office, where he leads efforts to improve consistency around how Verizon uses open source. As part of his work at Verizon he works upstream on software supply chain security standards and tools; he is a steering committee... Read More →

KubeCon NA 2021 TUF Maintainer Track pdf

Thursday October 14, 2021 2:30pm - 3:05pm PDT
Room 402 AB + Online

Maintainer Track Sessions

Talk Type In-Person

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Marina Moore

Joshua Lock