Sign up to save your podcasts
Or
Share EP131 A Deep Dive into Google's Assured OSS: How Google Secures the Software You Use
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
EP131 A Deep Dive into Google's Assured OSS: How Google Secures the Software You Use
Guests:
-
Himanshu Khurana, Engineering Manager, Google Cloud
-
Rahul Gupta, Product Manager for Assured OSS, Google Cloud
Topics:
-
For the software you're supporting in Assured Open Source your team discovered 50% of the CVEs reported in them this year. How did that happen?
-
So what is Assured Open Source?
-
Do we really guarantee its security? What does "guarantee" here mean?
-
What're users actually paying for here?
-
What's the Google magic here and why are we doing this?
-
Do we really audit all code and fuzz for security issues?
-
What's a supply chain attack and then we'll talk about how this is plugging into those gaps?
Resources:
-
Assured Open Source Software page
-
"SBOMs: A Step Towards a More Secure Software Supply Chain" (ep116)
-
"Linking Up The Pieces: Software Supply Chain Security at Google and Beyond" (ep24)
-
SLSA.dev blog
-
Open Source Security Podcast
-
Mandiant M-Trends 2023
View all episodes
By Anton Chuvakin
4.8
3939 ratings
Guests:
-
Himanshu Khurana, Engineering Manager, Google Cloud
-
Rahul Gupta, Product Manager for Assured OSS, Google Cloud
Topics:
-
For the software you're supporting in Assured Open Source your team discovered 50% of the CVEs reported in them this year. How did that happen?
-
So what is Assured Open Source?
-
Do we really guarantee its security? What does "guarantee" here mean?
-
What're users actually paying for here?
-
What's the Google magic here and why are we doing this?
-
Do we really audit all code and fuzz for security issues?
-
What's a supply chain attack and then we'll talk about how this is plugging into those gaps?
Resources:
-
Assured Open Source Software page
-
"SBOMs: A Step Towards a More Secure Software Supply Chain" (ep116)
-
"Linking Up The Pieces: Software Supply Chain Security at Google and Beyond" (ep24)
-
SLSA.dev blog
-
Open Source Security Podcast
-
Mandiant M-Trends 2023
More shows like Cloud Security Podcast by Google
View all
WSJ Your Money Briefing
1,713 Listeners
WSJ What’s News
4,420 Listeners
Security Now (Audio)
2,011 Listeners
Risky Business
371 Listeners
CyberWire Daily
1,028 Listeners
NVIDIA AI Podcast
343 Listeners
Darknet Diaries
8,077 Listeners
Cybersecurity Today
175 Listeners
Practical AI
212 Listeners
Cloud Security Podcast
57 Listeners
Cybersecurity Headlines
139 Listeners
Huberman Lab
29,272 Listeners
The AI Daily Brief: Artificial Intelligence News and Analysis
688 Listeners
HBR On Leadership
170 Listeners
AI Security Podcast
9 Listeners