Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Speaker Deck
PRO
Sign in
Sign up
for free
Securing the "other" supply chain
Nicolas Byl
May 15, 2019
Technology
0
69
Securing the "other" supply chain
Nicolas Byl
May 15, 2019
Tweet
Share
More Decks by Nicolas Byl
See All by Nicolas Byl
nbyl
0
39
nbyl
0
46
nbyl
0
42
nbyl
0
68
nbyl
0
58
nbyl
0
85
nbyl
0
170
nbyl
0
46
nbyl
1
43
Other Decks in Technology
See All in Technology
sat
8
7.5k
kawaguti
0
470
brtriver
1
540
hisa9chi
0
120
finengine
0
280
tj8000rpm
0
250
finengine
0
360
ayatokura
1
190
ytaka23
13
3.3k
line_developers
PRO
2
190
prog893
0
160
yuhta28
0
180
Featured
See All Featured
orderedlist
PRO
330
36k
philnash
10
680
chrislema
173
14k
morganepeng
95
14k
roundedbygravity
84
7.9k
reverentgeek
28
2.1k
zakiwarfel
88
3.4k
tenderlove
55
3.5k
tanoku
259
24k
philhawksworth
193
8.9k
afnizarnur
178
14k
mojombo
359
62k
Transcript
1 Nicolas Byl, DevOpsDays Zürich
2 Storytime 2 https://pxhere.com/de/photo/237
3 Checklists 3 https://pxhere.com/de/photo/1455425
4 Compliance 4
5 5
6 The castle illusion 6 https://pxhere.com/de/photo/852079
7 7
8 8 source code binary
9 Binary Authorization 9 https://pxhere.com/de/photo/662108
10 1 0 signature verify
11 build signature 1 dependency check static code analysis QA
tests successful release manager sign-off 2 3 4 5 11 1 1 https://pxhere.com/de/photo/661983
12 Demo 1 2 https://pxhere.com/de/photo/237
13 Emergencies 1 3 https://pxhere.com/de/photo/499662
14 Logging is not enough 1 Break-glass deployments should trigger
an action Abuse must be sanctioned A tool for emergency situations 2 3 4 14 1 4 https://pxhere.com/de/photo/33077
15 Demo 1 5 https://pxhere.com/de/photo/1140826
16 How to introduce these concepts? Blockchain? 1 6 https://pxhere.com/de/photo/237
17 nicolas.byl@codecentric.de 17 http://www.twitter.com/NicolasByl