The Sched app allows you to build your schedule but is not a substitute for your event registration. You must be registered for KubeCon + CloudNativeCon North America 2020 - Virtual to participate in the sessions. If you have not registered but would like to join us, please go to the event registration page to purchase a registration.
Please note: This schedule is automatically displayed in Eastern Standard Time (UTC–05:00). To see the schedule in your preferred timezone, please select from the drop-down menu to the right, above "Filter by Date." The schedule is subject to change.
The Notary v2 project was launched at Kubecon North America in 2019, as a joint community effort to resolve issues with the first generation Notary, which was launched five years ago. Since then we have learned a lot about how containers are used in practise and the security requirements, and Notary v2 builds on that experience from the whole community. The protocols are OCI registry native and designed to improve the supply chain security of the whole container ecosystem. This talk gives an overview of the progress, and the problems being solved, and then a deep dive into the state of the specification and implementations. We also cover current open issues and the road to production.
Steve is a PM Architect for Registries at Microsoft, and an OCI & ORAS Artifacts maintainer. He's working on Notary v2 and Microsofts secure supply chain offerings. Prior to joining Microsoft, Steve worked in software consulting and broadcast engineering, where he learned the balance... Read More →
Justin is the CTO at Docker, and a member of the CNCF TOC. He has spent a lot of time working on security in the container ecosystem. He is a maintainer on the Notary project for container security.