![CNCF [Cloud Native Computing Foundation]](https://www.classcentral.com/cdn-cgi/image/height=60,format=auto,quality=85/images/logos/institutions/cncf-cloud-native-computing-foundation-hz.png){kind=small}
Google, IBM & Meta Certificates — All 10,000+ Courses at 40% Off
One annual plan covers every course and certificate on Coursera. 40% off for a limited time.
Get Full Access
Explore the critical importance of interoperable supply chain security tooling in this 23-minute conference talk from CNCF. Discover how foundational projects like in-toto and DSSE, along with newer initiatives such as Sigstore, SLSA, Minder, and GUAC, can work together more effectively despite current interoperability challenges. Learn about the gaps that exist when organizations across the supply chain use different tooling approaches, including varying methods for storing signature information and encoding data at rest. Examine practical approaches to bridge these gaps and understand the remaining work needed to achieve seamless tool integration. Gain insights into how combining these security frameworks can unlock their full potential for strengthening software supply chain security across upstream suppliers and downstream users.
![CNCF [Cloud Native Computing Foundation]](https://www.classcentral.com/cdn-cgi/image/height=40,format=auto,quality=85/images/logos/institutions/cncf-cloud-native-computing-foundation-hz.png){kind=small}
