Sign up to save your podcasts
Or
Share EP131 A Deep Dive into Google's Assured OSS: How Google Secures the Software You Use
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
EP131 A Deep Dive into Google's Assured OSS: How Google Secures the Software You Use
Guests:
-
Himanshu Khurana, Engineering Manager, Google Cloud
-
Rahul Gupta, Product Manager for Assured OSS, Google Cloud
Topics:
-
For the software you're supporting in Assured Open Source your team discovered 50% of the CVEs reported in them this year. How did that happen?
-
So what is Assured Open Source?
-
Do we really guarantee its security? What does "guarantee" here mean?
-
What're users actually paying for here?
-
What's the Google magic here and why are we doing this?
-
Do we really audit all code and fuzz for security issues?
-
What's a supply chain attack and then we'll talk about how this is plugging into those gaps?
Resources:
-
Assured Open Source Software page
-
"SBOMs: A Step Towards a More Secure Software Supply Chain" (ep116)
-
"Linking Up The Pieces: Software Supply Chain Security at Google and Beyond" (ep24)
-
SLSA.dev blog
-
Open Source Security Podcast
-
Mandiant M-Trends 2023
View all episodes
By Anton Chuvakin
4.8
3939 ratings
Guests:
-
Himanshu Khurana, Engineering Manager, Google Cloud
-
Rahul Gupta, Product Manager for Assured OSS, Google Cloud
Topics:
-
For the software you're supporting in Assured Open Source your team discovered 50% of the CVEs reported in them this year. How did that happen?
-
So what is Assured Open Source?
-
Do we really guarantee its security? What does "guarantee" here mean?
-
What're users actually paying for here?
-
What's the Google magic here and why are we doing this?
-
Do we really audit all code and fuzz for security issues?
-
What's a supply chain attack and then we'll talk about how this is plugging into those gaps?
Resources:
-
Assured Open Source Software page
-
"SBOMs: A Step Towards a More Secure Software Supply Chain" (ep116)
-
"Linking Up The Pieces: Software Supply Chain Security at Google and Beyond" (ep24)
-
SLSA.dev blog
-
Open Source Security Podcast
-
Mandiant M-Trends 2023
More shows like Cloud Security Podcast by Google
View all
WSJ Your Money Briefing
1,723 Listeners
WSJ What’s News
4,423 Listeners
Security Now (Audio)
2,010 Listeners
Risky Business
373 Listeners
CyberWire Daily
1,026 Listeners
NVIDIA AI Podcast
347 Listeners
Darknet Diaries
8,079 Listeners
Cybersecurity Today
177 Listeners
Practical AI
211 Listeners
Cloud Security Podcast
58 Listeners
Cybersecurity Headlines
140 Listeners
Huberman Lab
29,297 Listeners
The AI Daily Brief: Artificial Intelligence News and Analysis
683 Listeners
HBR On Leadership
169 Listeners
AI Security Podcast
9 Listeners