- Session 1: How is AI shaping up DevSecOps by Srinivas Vungarala
- Session 2: Exploring Cloud Artifact Signing with Notary and Cosign for trust and integrity with Balasaheb Salunke
Session 1: How is AI shaping up DevSecOps
AI is playing a significant role in enhancing the capabilities of DevSecOps engineers by automating vulnerability scanning and analysis, threat intelligence and monitoring, security automation and orchestration, predictive analytics and risk assessment, code analysis and review, and security testing and validation. AI-powered tools can help DevSecOps engineers identify and remediate vulnerabilities early in the development cycle, detect potential threats, detect anomalies, and provide early warning notifications. AI can support continuous monitoring and compliance, security automation and orchestration, predictive analytics and risk assessment, code analysis and review, security testing and validation, and automated security testing. AI-powered tools can automate routine security tasks, such as log analysis, incident response, and policy enforcement, allowing DevSecOps engineers to focus on more complex security issues and strategic initiatives. AI can also automate security testing by analyzing code, identifying vulnerabilities, and suggesting remediation measures.
Session 2: Exploring Cloud Artifact Signing with Notary and Cosign for trust and integrity
In the rapidly evolving landscape of Cloud and cloud native adoption ensuring the trust and integrity of software artifacts is of supreme importance.
In this talk, we will go over the need for trust and integrity in cloud territory. We will discuss the principles behind cloud artifact signing, including the use of digital signatures, transparency logs, and the role of public key infrastructure. We would also understand what tools are available to support cloud artifacts signing and their comparison. We can demonstrate the image signing using Notary as well as Cosign.
Join the Community!
If you haven’t joined the Discord community, please do so! You can find us on Discord at: https://devseccon.io/discordcommunity