all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

How to Use Sigstore without Sigstore

Add to bookmarks
Jan. 2, 2023, 4:06 a.m. |

IACR News www.iacr.org

ePrint Report: How to Use Sigstore without Sigstore

Yan-Cheng Chang


Sigstore is a Linux Foundation project aiming to become the new standard for signing software artifacts. It consists of a free certificate authority called Fulcio, a tamper-resistant public log called Rekor, and an optional federated OIDC identity provider called Dex, where Rekor also acts as the timestamping service. Several command line interfaces (CLIs), written in different languages, are available to interact with it for signing software artifacts.


Ironically, we will …

artifacts authority called certificate certificate authority dex eprint report foundation free identity identity provider linux linux foundation log project public report signing sigstore software standard

Visit resource

More from www.iacr.org / IACR News

Computational Attestations of Polynomial Integrity Towards Verifiable Machine Learning 1 day, 14 hours ago | www.iacr.org
complexity computational continue emerging +11
A note on ``a lightweight mutual and transitive authentication mechanism for IoT network'' 1 day, 14 hours ago | www.iacr.org
anonymity authentication eprint report iot +5
Towards Permissionless Consensus in the Standard Model via Fine-Grained Complexity 1 day, 14 hours ago | www.iacr.org
agreement complexity eprint report peter +4
Regev Factoring Beyond Fibonacci: Optimizing Prefactors 1 day, 14 hours ago | www.iacr.org
algorithm beyond bridge concrete +7
Organizing Records for Retrieval in Multi-Dimensional Range Searchable Encryption 1 day, 14 hours ago | www.iacr.org
arrays efficiency encryption eprint report +9
Unconditional correctness of recent quantum algorithms for factoring and computing discrete logarithms 1 day, 14 hours ago | www.iacr.org
algorithm algorithms compute computing +11
NTRU-based FHE for Larger Key and Message Space 1 day, 14 hours ago | www.iacr.org
asiacrypt block building encryption +10
Vision Mark-32: ZK-Friendly Hash Function Over Binary Tower Fields 1 day, 14 hours ago | www.iacr.org
applications binary eprint report fast +13
Further Investigations on Nonlinear Complexity of Periodic Binary Sequences 1 day, 14 hours ago | www.iacr.org
binary complexities complexity eprint report +8

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Cybersecurity Engineer

@ Booz Allen Hamilton | USA, VA, Arlington (1550 Crystal Dr Suite 300) non-client
View on infosec-jobs.com

Invoice Compliance Reviewer

@ AC Disaster Consulting | Fort Myers, Florida, United States - Remote
View on infosec-jobs.com

Technical Program Manager II - Compliance

@ Microsoft | Redmond, Washington, United States
View on infosec-jobs.com

Head of U.S. Threat Intelligence / Senior Manager for Threat Intelligence

@ Moonshot | Washington, District of Columbia, United States
View on infosec-jobs.com

Customer Engineer, Security, Public Sector

@ Google | Virginia, USA; Illinois, USA
View on infosec-jobs.com
View more jobs