Open Source Security Podcast
Josh Bressers & Kurt Seifried
A security podcast geared towards those looking to better understand security topics of the day. Hosted by Kurt Seifried and Josh Bressers covering a wide range of topics including IoT, application security, operational security, cloud, devops, and security news of the day. There is a special open source twist to the discussion often giving a unique perspective on any given topic.
Categorieën: Technologie
Luister naar de laatste aflevering:
Josh and Kurt talk about the new SSDF attestation form from CISA. The current form isn't very complicated, and the SSDF has a lot of room for interpretation. But this is the start of something big. It's going to take a long time to see big changes in supply chain security, but we're confident they will come.
Show Notes- Secure Software Development Attestation Form
- The U.S. Military Is Missing Six Nuclear Weapons
- NIST 800-218
Vorige afleveringen
-
502 - Episode 421 - CISA's new SSDF attestation form Mon, 25 Mar 2024 - 0h
-
501 - Episode 420 - What's going on at NVD Mon, 18 Mar 2024 - 0h
-
500 - Episode 419 - Malicious GitHub repositories Mon, 11 Mar 2024 - 0h
-
499 - Episode 418 - Being right all the time is hard Mon, 04 Mar 2024 - 0h
-
498 - Episode 417 - Linux Kernel security with Greg K-H Mon, 26 Feb 2024 - 0h
-
497 - Episode 416 - Thomas Depierre on open source in Europe Mon, 19 Feb 2024 - 0h
-
496 - Episode 415 - Reducing attack surface for less security Mon, 12 Feb 2024 - 0h
-
495 - Episode 414 - The exploited ecosystem of open source Mon, 05 Feb 2024 - 0h
-
494 - Episode 413 - PyTorch and NPM get attacked, but it's OK Mon, 29 Jan 2024 - 0h
-
493 - Episode 412 - Blame the users for bad passwords! Mon, 22 Jan 2024 - 0h
-
492 - Episode 411 - The security tools that started it all Mon, 15 Jan 2024 - 0h
-
491 - Episode 410 - Package identifiers are really hard Mon, 08 Jan 2024 - 0h
-
490 - Episode 409 - You wouldn't hack a train? Mon, 01 Jan 2024 - 0h
-
489 - Episode 408 - Does Kubernetes need long term support? Mon, 25 Dec 2023 - 0h
-
488 - Episode 407 - Should Santa use AI? Mon, 18 Dec 2023 - 0h
-
487 - Episode 406 - The security of radio Mon, 11 Dec 2023 - 0h
-
486 - Episode 405 - Modding games isn't cheating and security isn't fair Mon, 04 Dec 2023 - 0h
-
485 - Episode 403 - Does the government banning apps work? Mon, 27 Nov 2023 - 0h
-
484 - Episode 402 - The EU's eIDAS regulation is a terrible idea Mon, 20 Nov 2023 - 0h
-
483 - Episode 401 - Security skills shortage - We've tried nothing and the same thing keeps happening Mon, 13 Nov 2023 - 0h
-
482 - Episode 400 - When can the government hack a victim? Mon, 06 Nov 2023 - 0h
-
481 - Episode 399 - Curl, Security, and Daniel Stenberg Mon, 30 Oct 2023 - 0h
-
480 - Episode 398 - Is only 11% of open source maintained? Mon, 23 Oct 2023 - 0h
-
479 - Episode 397 - The curl and glibc vulnerabilities Mon, 16 Oct 2023 - 0h
-
478 - Episode 396 - CLAs are bad, Mkay? Mon, 09 Oct 2023 - 0h
-
477 - Episode 395 - Uncertainty, trust, and security Mon, 02 Oct 2023 - 0h
-
476 - Episode 394 - The lie anyone can contribute to open source Mon, 25 Sep 2023 - 0h
-
475 - Episode 393 - Can you secure something you don't own? Mon, 18 Sep 2023 - 0h
-
474 - Episode 392 - Curl and the calamity of CVE Mon, 11 Sep 2023 - 0h
-
473 - Episode 391 - The Wordpress 100 year disaster recovery problem Mon, 04 Sep 2023 - 0h
-
472 - Episode 390 - Rust shipping binaries doesn't matter Mon, 28 Aug 2023 - 0h
-
471 - Episode 389 - What would HashiCorp do? Mon, 21 Aug 2023 - 0h
-
470 - Episode 388 - Video game vulnerabilities Mon, 14 Aug 2023 - 0h
-
469 - Episode 387 - Enterprise open source is different Mon, 07 Aug 2023 - 0h
-
468 - Episode 386 - We are watching web 2.0 burn Mon, 31 Jul 2023 - 0h
-
467 - Episode 385 - Is open source an insider threat? Mon, 24 Jul 2023 - 0h
-
466 - Episode 384 - What's next for open source? Mon, 17 Jul 2023 - 0h
-
465 - Episode 383 - Is open source dying? Mon, 10 Jul 2023 - 0h
-
464 - Episode 382 - Red Hat, you were the chosen one! Mon, 03 Jul 2023 - 0h
-
463 - Episode 381 - WTF Reddit, APIs and risk Mon, 26 Jun 2023 - 0h
-
462 - Episode 380 - A new Sovereign Tech Fund program and the BBC on destroying hard drives Mon, 19 Jun 2023 - 0h
-
461 - Episode 379 - Will open source save the world, again? Mon, 12 Jun 2023 - 0h
-
460 - Episode 378 - Naming things is harder than security Mon, 05 Jun 2023 - 0h
-
459 - Episode 377 - The world is changing too fast for humans to understand Mon, 29 May 2023 - 0h
-
458 - Episode 376 - Open Source Summit, who built your open source, and AI Mon, 22 May 2023 - 0h
-
457 - Episode 375 - The market forces of left-pad, Episode 77 remaster part 2 Mon, 15 May 2023 - 0h
-
456 - Episode 374 - The event we called left-pad, Episode 77 remaster part 1 Mon, 08 May 2023 - 0h
-
455 - Episode 373 – HHGG security, Episode 42 remaster part 2 Mon, 01 May 2023 - 0h
-
454 - Episode 372 - HHGG security, Episode 42 remaster part 1 Mon, 24 Apr 2023 - 0h
-
453 - Episode 371 - pip install is the tool we deserve but not the tool we need Mon, 17 Apr 2023 - 0h