all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Software Supply Chain Attribute Integrity (SCAI). (arXiv:2210.05813v1 [cs.SE])

Add to bookmarks
Oct. 13, 2022, 1:26 a.m. | Marcela S. Melara

cs.CR updates on arXiv.org arxiv.org

The Software Supply Chain Attribute Integrity, or SCAI (pronounced "sky"),
specification proposes a data format for capturing functional attribute and
integrity information about software artifacts and their supply chain. SCAI
data can be associated with executable binaries, statically- or
dynamically-linked libraries, software packages, container images, software
toolchains, and compute environments.


As such, SCAI is intended to be implemented as part of an existing software
supply chain attestation framework by software development tools or services
(e.g., builders, CI/CD pipelines, software analysis …

integrity software software supply chain supply supply chain

Visit resource

More from arxiv.org / cs.CR updates on arXiv.org

Privacy Amplification for Matrix Mechanisms 21 hours ago | arxiv.org
algorithms amplification analysis art +16
Jailbreak and Guard Aligned Language Models with Only Few In-Context Demonstrations 21 hours ago | arxiv.org
alignment arxiv context cs.ai +11
FT-Shield: A Watermark Against Unauthorized Fine-tuning in Text-to-Image Diffusion Models 21 hours ago | arxiv.org
adaptation advancement applications arxiv +15
Are aligned neural networks adversarially aligned? 21 hours ago | arxiv.org
adversarial align alignment arxiv +17
Data Depth and Core-based Trend Detection on Blockchain Transaction Networks 21 hours ago | arxiv.org
arxiv assets blockchain blockchains +14
A New Linear Scaling Rule for Private Adaptive Hyperparameter Optimization 21 hours ago | arxiv.org
account arxiv cost cs.ai +11
RandOhm: Mitigating Impedance Side-channel Attacks using Randomized Circuit Configurations 21 hours ago | arxiv.org
arxiv attacks can channel +15
An algorithm for forensic toolmark comparisons 21 hours ago | arxiv.org
address algorithm analysis arxiv +11
Scalable and Adaptively Secure Any-Trust Distributed Key Generation and All-hands Checkpointing 21 hours ago | arxiv.org
applications arxiv blockchain challenges +10

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Red Team Penetration Tester and Operator, Junior

@ Booz Allen Hamilton | USA, VA, McLean (1500 Tysons McLean Dr)
View on infosec-jobs.com

Director, Security Operations & Risk Management

@ Live Nation Entertainment | Toronto, ON
View on infosec-jobs.com

IT and Security Specialist APAC (F/M/D)

@ Flowdesk | Singapore, Singapore, Singapore
View on infosec-jobs.com

Senior Security Controls Assessor

@ Capgemini | Washington, DC, District of Columbia, United States; McLean, Virginia, United States
View on infosec-jobs.com

GRC Systems Solution Architect

@ Deloitte | Midrand, South Africa
View on infosec-jobs.com

Cybersecurity Subject Matter Expert (SME)

@ SMS Data Products Group, Inc. | Fort Belvoir, VA, United States
View on infosec-jobs.com
View more jobs