Season 1 · Episode 24
Linking Up The Pieces: Software Supply Chain Security at Google and Beyond
Cloud Security Podcast by Google
July 26, 202123m 3s
Audio is streamed directly from the publisher (traffic.libsyn.com) as published in their RSS feed. Play Podcasts does not host this file. Rights-holders can request removal through the copyright & takedown page.
Show Notes
Guests:
- Eric Brewer, VP of Infrastructure, and Google Fellow @ Google
- Aparna Sinha, Director of Product Management @ Google Cloud
Topics:
- What is software supply chain security and how is it different from other kinds of supply chain security?
- What types of organizations need to care about it? Is supply chain security a concern for large, elite enterprises only?
- What's the relationship between what we're doing here, and what SBOM is?
- Can you talk us through a quick threat assessment of a supply chain security issue? What are the realistic threats here and who are the threat actors involved?
- How does Google try to solve these problems internally? Have we succeeded?
- How does this translate into our products? By the way, what's SLSA?
Resources: