Google, IBM & Meta Certificates — All 10,000+ Courses at 40% Off
One annual plan covers every course and certificate on Coursera. 40% off for a limited time.
Get Full Access
Explore the Sigstore ecosystem through data-driven insights in this 18-minute conference talk that examines digital signing practices across open source communities. Learn about Sigstore's core components and how this tooling simplifies signing and verification while making signatures transparent and publicly auditable to detect malicious behavior. Discover trends in how organizations utilize Sigstore for signing by analyzing data from Rekor, Sigstore's public transparency log, including insights about the most commonly used identity providers, signing patterns throughout the day, and the prevalence of short-lived certificates versus self-managed keys. Gain practical knowledge on how to access and leverage this ecosystem data to uncover your own insights about supply chain security and digital signing practices in the open source community.
