Google launches unified initiative to boost open source security reporting betanews.com - get the latest breaking news, showbiz & celebrity photos, sport news & rumours, viral videos and top stories from betanews.com Daily Mail and Mail on Sunday newspapers.
Linux Foundation Announces Free sigstore Signing Service to Confirm Origin and Authenticity of Software
Red Hat, Google and Purdue University lead efforts to ensure software maintainers, distributors and consumers have full confidence in their code, artifacts and tooling
News provided by
Share this article
Share this article
SAN FRANCISCO, March 9, 2021 /PRNewswire/ The Linux Foundation, the nonprofit organization enabling mass innovation through open source, today announced the sigstore project. sigstore improves the security of the software supply chain by enabling the easy adoption of cryptographic software signing backed by transparency log technologies.
sigstore will empower software developers to securely sign software artifacts such as release files, container images and binaries. Signing materials are then stored in a tamper-proof public log. The service will be free to use for all developers and software providers, with the sigstore code and operation tooling devel
The Linux Foundation, the non-profit organization enabling innovation through open source, has announced a new service to improve the security of the software supply chain by enabling the easy adoption of cryptographic software signing.