all InfoSec news
How to Use Sigstore without Sigstore
Jan. 2, 2023, 4:06 a.m. |
IACR News www.iacr.org
ePrint Report: How to Use Sigstore without Sigstore
Yan-Cheng Chang
Sigstore is a Linux Foundation project aiming to become the new standard for signing software artifacts. It consists of a free certificate authority called Fulcio, a tamper-resistant public log called Rekor, and an optional federated OIDC identity provider called Dex, where Rekor also acts as the timestamping service. Several command line interfaces (CLIs), written in different languages, are available to interact with it for signing software artifacts.
Ironically, we will …
artifacts authority called certificate certificate authority dex eprint report foundation free identity identity provider linux linux foundation log project public report signing sigstore software standard
More from www.iacr.org / IACR News
Post-Doc in Lattice-Based Cryptography
1 day, 16 hours ago |
www.iacr.org
WPEC 2024: NIST Workshop on Privacy Enhancing Cryptography
1 day, 17 hours ago |
www.iacr.org
Indistinguishability Obfuscation from Bilinear Maps and LPN Variants
1 day, 21 hours ago |
www.iacr.org
Securing the Future of GenAI: Policy and Technology
1 day, 21 hours ago |
www.iacr.org
Jobs in InfoSec / Cybersecurity
CyberSOC Technical Lead
@ Integrity360 | Sandyford, Dublin, Ireland
Cyber Security Strategy Consultant
@ Capco | New York City
Cyber Security Senior Consultant
@ Capco | Chicago, IL
Sr. Product Manager
@ MixMode | Remote, US
Corporate Intern - Information Security (Year Round)
@ Associated Bank | US WI Remote
Senior Offensive Security Engineer
@ CoStar Group | US-DC Washington, DC