Attending this event?
Amsterdam, The Netherlands
March 30–April 2, 2020

Learn More and Register to Attend This Event
Tuesday, March 31 • 11:05 - 11:40
Securing Container Delivery with TUF - Justin Cappos & Lukas Puehringer, NYU

Sign up or log in to save this to your schedule and see who's attending!

One of the most pressing security problems in cloud native is the secure delivery of container images. Common solutions addressing this problem live under the assumption that a signing key, used to protect an artifact or its distribution, is kept safe. But time has shown again and again that this assumption is faulty, and that a single key loss or compromise can cause enormous damage. That is why The Update Framework (TUF) was designed not only to prevent and detect attacks, but also with risk mitigation (reducing the damage from a successful attack) as a core principle. Being the first security-focused project to graduate in the CNCF, TUF is widely used both in and outside of the cloud ecosystem. In this talk we will describe the basic architecture of TUF including how TUF protects against a variety of real-world attacks on any software distribution infrastructure. We will show how even if an organization makes a security error (a server is hacked, a private key is checked into github, etc.), TUF can bring a repository back into a secure state.

avatar for Justin Cappos

Justin Cappos

Professor, NYU
Justin Cappos is a professor in the Computer Science and Engineering department at New York University, who strives to provide service to society through technology. Justin's research philosophy focuses on solving real world security problems in practice. He and his students often... Read More →
avatar for Lukas Puehringer

Lukas Puehringer

Research Associate, NYU
Lukas Puehringer is a research scholar and developer at NYU's Center for Cyber Security (CCS), where he leads the development of in-toto and has been co-maintaining several of Prof. Justin Cappos' software projects, such as The Update Framework (TUF) . Lukas has given talks about... Read More →

Tuesday March 31, 2020 11:05 - 11:40
Feedback form isn't open yet.

Attendees (50)