Sign up to save your podcasts
Or
Share EP131 A Deep Dive into Google's Assured OSS: How Google Secures the Software You Use
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
EP131 A Deep Dive into Google's Assured OSS: How Google Secures the Software You Use
Guests:
-
Himanshu Khurana, Engineering Manager, Google Cloud
-
Rahul Gupta, Product Manager for Assured OSS, Google Cloud
Topics:
-
For the software you're supporting in Assured Open Source your team discovered 50% of the CVEs reported in them this year. How did that happen?
-
So what is Assured Open Source?
-
Do we really guarantee its security? What does "guarantee" here mean?
-
What're users actually paying for here?
-
What's the Google magic here and why are we doing this?
-
Do we really audit all code and fuzz for security issues?
-
What's a supply chain attack and then we'll talk about how this is plugging into those gaps?
Resources:
-
Assured Open Source Software page
-
"SBOMs: A Step Towards a More Secure Software Supply Chain" (ep116)
-
"Linking Up The Pieces: Software Supply Chain Security at Google and Beyond" (ep24)
-
SLSA.dev blog
-
Open Source Security Podcast
-
Mandiant M-Trends 2023
View all episodes
By Anton Chuvakin
4.8
3939 ratings
Guests:
-
Himanshu Khurana, Engineering Manager, Google Cloud
-
Rahul Gupta, Product Manager for Assured OSS, Google Cloud
Topics:
-
For the software you're supporting in Assured Open Source your team discovered 50% of the CVEs reported in them this year. How did that happen?
-
So what is Assured Open Source?
-
Do we really guarantee its security? What does "guarantee" here mean?
-
What're users actually paying for here?
-
What's the Google magic here and why are we doing this?
-
Do we really audit all code and fuzz for security issues?
-
What's a supply chain attack and then we'll talk about how this is plugging into those gaps?
Resources:
-
Assured Open Source Software page
-
"SBOMs: A Step Towards a More Secure Software Supply Chain" (ep116)
-
"Linking Up The Pieces: Software Supply Chain Security at Google and Beyond" (ep24)
-
SLSA.dev blog
-
Open Source Security Podcast
-
Mandiant M-Trends 2023
More shows like Cloud Security Podcast by Google
View all
Security Now (Audio)
2,009 Listeners
Risky Business
372 Listeners
SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)
651 Listeners
CyberWire Daily
1,020 Listeners
Smashing Security
319 Listeners
Click Here
416 Listeners
Darknet Diaries
8,059 Listeners
Cybersecurity Today
179 Listeners
Hacking Humans
314 Listeners
CISO Series Podcast
189 Listeners
AWS Podcast
204 Listeners
Defense in Depth
74 Listeners
Cloud Security Podcast
57 Listeners
Cyber Security Headlines
139 Listeners
Risky Bulletin
44 Listeners