Diese Präsentation wurde erfolgreich gemeldet.
Die SlideShare-Präsentation wird heruntergeladen. ×

Manage Artifact Versioning, Security and Compliance

10. Mai 2020
0 gefällt mir 79 Aufrufe
Anzeige
Anzeige
Anzeige
Anzeige
Anzeige
Anzeige
Anzeige
Anzeige
Anzeige
Anzeige
Anzeige
Anzeige
Nächste SlideShare
Identity Security - Azure Identity Protection
Identity Security - Azure Identity Protection
Wird geladen in …3
×

Hier ansehen

Kevin wharram
Kevin Wharram
HOWTO: Protect your websites/apps from cyber attacks
University of Toronto
Ten Tools for Security Professionals
McGrewSecurity
Practice of AppSec .NET
Mikhail Shcherbakov
5 Important Secure Coding Practices
Thomas Kurian Ambattu,CRISC,ISLA-2011 (ISC)²
security misconfigurations
Megha Sahu
Secure coding practices
Mohammed Danish Amber
Uniface Web Application Security
Uniface
1 von 17 Anzeige

Manage Artifact Versioning, Security and Compliance

10. Mai 2020
0 gefällt mir 79 Aufrufe

Herunterladen, um offline zu lesen

Technologie

We will talk about how you can secure your packages and feeds and check security requirements on the packages used in developing your software solutions. Also we will cover how to make sure the packages used are compliant to the standard and requirements that exist in your organization from a licensing and security vulnerability perspective.

We will talk about how you can secure your packages and feeds and check security requirements on the packages used in developing your software solutions. Also we will cover how to make sure the packages used are compliant to the standard and requirements that exist in your organization from a licensing and security vulnerability perspective.

Technologie
Anzeige

Empfohlen

Identity Security - Azure Identity Protection
Eng Teong Cheah
128 Aufrufe
12 Folien
Managing Application Config and Secrets
Eng Teong Cheah
127 Aufrufe
25 Folien
Compute Security - Host Security
Eng Teong Cheah
99 Aufrufe
10 Folien
Virtual Networking Security - Perimeter Security
Eng Teong Cheah
92 Aufrufe
12 Folien
Application Security - Key Vault
Eng Teong Cheah
90 Aufrufe
14 Folien
Security hardening and drown attack prevention for mobile backend developers
Jiri Danihelka
690 Aufrufe
14 Folien
Top 10 security risks for mobile backend developers
Jiri Danihelka
604 Aufrufe
13 Folien
Virtual Networking Security - Network Security
Eng Teong Cheah
158 Aufrufe
14 Folien
Anzeige

Weitere Verwandte Inhalte

Diashows für Sie (20)

Kevin wharram
Kevin Wharram
550 Aufrufe
HOWTO: Protect your websites/apps from cyber attacks
University of Toronto
335 Aufrufe
Ten Tools for Security Professionals
McGrewSecurity
1.2k Aufrufe
Practice of AppSec .NET
Mikhail Shcherbakov
871 Aufrufe
5 Important Secure Coding Practices
Thomas Kurian Ambattu,CRISC,ISLA-2011 (ISC)²
594 Aufrufe
security misconfigurations
Megha Sahu
1.6k Aufrufe
Secure coding practices
Mohammed Danish Amber
3.9k Aufrufe
Uniface Web Application Security
Uniface
1.7k Aufrufe
ASP.NET security vulnerabilities
Aleksandar Bozinovski
6k Aufrufe
Secure Coding - Are we doing it wrong
bryns
963 Aufrufe
[OWASP Poland Day] Security knowledge framework
OWASP
775 Aufrufe
Microsoft Ignite session: Look under the hood: bypassing antimalware tactics ...
Paula Januszkiewicz
2.5k Aufrufe
Implementing application security using the .net framework
Lalit Kale
4.1k Aufrufe
Microsoft Ignite session: Explore adventures in the underland: forensic techn...
Paula Januszkiewicz
6k Aufrufe
12 Crucial Windows Security Skills for 2018
Paula Januszkiewicz
4.5k Aufrufe
[OWASP Poland Day] Saving private token
OWASP
329 Aufrufe
SQL Server Security and Intrusion Prevention
Gabriel Villa
2.4k Aufrufe
Security evaluation of_libraries_lascon_2017_v2
Trupti Shiralkar, CISSP
35 Aufrufe
Automated Penetration Testing With Core Impact
Tom Eston
3.3k Aufrufe
Lession 8
Vietfreelancer Expert
69 Aufrufe
Kevin wharram
Kevin Wharram
550 Aufrufe
39 Folien
HOWTO: Protect your websites/apps from cyber attacks
University of Toronto
335 Aufrufe
21 Folien
Ten Tools for Security Professionals
McGrewSecurity
1.2k Aufrufe
41 Folien
Practice of AppSec .NET
Mikhail Shcherbakov
871 Aufrufe
46 Folien
5 Important Secure Coding Practices
Thomas Kurian Ambattu,CRISC,ISLA-2011 (ISC)²
594 Aufrufe
10 Folien
security misconfigurations
Megha Sahu
1.6k Aufrufe
18 Folien

Ähnlich wie Manage Artifact Versioning, Security and Compliance (20)

Open source software
MuhamadHajMousa
238 Aufrufe
Consolidating Artifacts and Designing a Dependency Management Strategy
Eng Teong Cheah
76 Aufrufe
Open Source for Cyber Security
Prabath Siriwardena
982 Aufrufe
Managing the Software Supply Chain: Policies that Promote Innovation While Op...
FINOS
84 Aufrufe
Lyra Infosystems Services and Consulting Portfolio 2020
Lyra Infosystems Pvt. Ltd
12 Aufrufe
Licensing in Composite Open Source Projects
Protecode
290 Aufrufe
Open source software license
aakash malhotra
42 Aufrufe
Importance of the contribution for an open source
Illia Antypenko
33 Aufrufe
Open Source & What It Means For Self-Sovereign Identity (SSI)
Evernym
98 Aufrufe
Licensing in Composite Projects
Tiberius Forrester
229 Aufrufe
The Aspects of Choosing Open Source Versus Closed Source
Jeet Prakash
1.8k Aufrufe
8-tips-protecting-your-assets(pv1)
Julia Angell
283 Aufrufe
Aliens in Your Apps! Are You Using Components With Known Vulnerabilities?
Sonatype
1.2k Aufrufe
Securing Source Code on Endpoints
thomashelsley
21 Aufrufe
Aliens in Your Apps!
All Things Open
409 Aufrufe
OSS has taken over the enterprise: The top five OSS trends of 2015
Rogue Wave Software
713 Aufrufe
Giving Everyone Access To Open Source Best Practices: The OpenChain Curriculum
Shane Coughlan
304 Aufrufe
Lawyers and Licenses in Open Source-based Development: How to Protect Your So...
Sonatype
542 Aufrufe
Open source technology
Rohit Kumar
1.8k Aufrufe
Preventing Supply Chain Attacks on Open Source Software
All Things Open
71 Aufrufe
Open source software
MuhamadHajMousa
238 Aufrufe
12 Folien
Consolidating Artifacts and Designing a Dependency Management Strategy
Eng Teong Cheah
76 Aufrufe
16 Folien
Open Source for Cyber Security
Prabath Siriwardena
982 Aufrufe
21 Folien
Managing the Software Supply Chain: Policies that Promote Innovation While Op...
FINOS
84 Aufrufe
38 Folien
Lyra Infosystems Services and Consulting Portfolio 2020
Lyra Infosystems Pvt. Ltd
12 Aufrufe
54 Folien
Licensing in Composite Open Source Projects
Protecode
290 Aufrufe
21 Folien
Anzeige

Weitere von Eng Teong Cheah (20)

Monitoring Models
Eng Teong Cheah
36 Aufrufe
Responsible Machine Learning
Eng Teong Cheah
34 Aufrufe
Training Optimal Models
Eng Teong Cheah
29 Aufrufe
Deploying Models
Eng Teong Cheah
26 Aufrufe
Machine Learning Workflows
Eng Teong Cheah
31 Aufrufe
Working with Compute
Eng Teong Cheah
28 Aufrufe
Working with Data
Eng Teong Cheah
24 Aufrufe
Experiments & TrainingModels
Eng Teong Cheah
35 Aufrufe
Automated Machine Learning
Eng Teong Cheah
24 Aufrufe
Getting Started with Azure Machine Learning
Eng Teong Cheah
30 Aufrufe
Hacking Containers - Container Storage
Eng Teong Cheah
45 Aufrufe
Hacking Containers - Looking at Cgroups
Eng Teong Cheah
92 Aufrufe
Hacking Containers - Linux Containers
Eng Teong Cheah
102 Aufrufe
Data Security - Storage Security
Eng Teong Cheah
97 Aufrufe
Application Security- App security
Eng Teong Cheah
96 Aufrufe
Compute Security - Container Security
Eng Teong Cheah
61 Aufrufe
Access Security - Hybrid Identity
Eng Teong Cheah
74 Aufrufe
Access Security - Privileged Identity Management
Eng Teong Cheah
356 Aufrufe
Access Security - Enterprise governance
Eng Teong Cheah
59 Aufrufe
Identity Security - Azure Active Directory
Eng Teong Cheah
80 Aufrufe
Monitoring Models
Eng Teong Cheah
36 Aufrufe
11 Folien
Responsible Machine Learning
Eng Teong Cheah
34 Aufrufe
17 Folien
Training Optimal Models
Eng Teong Cheah
29 Aufrufe
9 Folien
Deploying Models
Eng Teong Cheah
26 Aufrufe
12 Folien
Machine Learning Workflows
Eng Teong Cheah
31 Aufrufe
7 Folien
Working with Compute
Eng Teong Cheah
28 Aufrufe
6 Folien

Aktuellste (20)

Mycelia View #2
MyceliaUni
0 Aufrufe
Plant Based Water.pdf
RushiDalve
0 Aufrufe
Cisco CCNA ITN (Introduction to Networks) - Certification
Mohamed Haathim Sharfraz
0 Aufrufe
Servo Stabilizer
Akil Siddiqui
0 Aufrufe
"Modern DevOps & Real Life Applications. 3.0.0-devops+20230318", Igor Fesenko
Fwdays
0 Aufrufe
Digital Marketing.pdf
COGENT IBS
0 Aufrufe
PROOF OF CONCEPT FOR XBRL REPORT INDEXER SECURED BY BLOCKCHAIN USING A SMART ...
RiderBharath
0 Aufrufe
ALTERNATIVE FUELS.pdf
ShakeelAhmad816993
0 Aufrufe
Working with data using Azure Functions.pdf
Stephanie Locke
0 Aufrufe
BRKIOT-2108.pdf
JokaTek
0 Aufrufe
Fuel Additives, Lecture 02, Fuel Tech-ll.pdf
ShakeelAhmad816993
0 Aufrufe
'Sufola Batishak' A Good Quality Pechay Variety Developed by BRAC Through Co...
BRAC AGRICULTURE RESEARCH & DEVELOPMENT CENTRE, GAZIPUR, BANGLADFESH
0 Aufrufe
ISM Presentation 2.pptx
hawariyaabel
0 Aufrufe
Untangling the Grid: 201
Kerim Baran
0 Aufrufe
Nuance RPA 11.8 (1).pptx
Jeff512584
0 Aufrufe
820-2915.pdf
Francisco Corea Luna
0 Aufrufe
EyeWay Vision
Boris Greenberg
0 Aufrufe
ALTERNATIVE FUELS Lecture 6 Fuel Tech-ll.pptx
ShakeelAhmad816993
0 Aufrufe
1_AAU_need_for_autonomy_presented_to_AAU_Board_28_march_2021.pptx
hawariyaabel
0 Aufrufe
Six_Sigma_Report_Template_v2 (2).pptx
PhngPhmTrung
0 Aufrufe
Mycelia View #2
MyceliaUni
0 Aufrufe
1 Folie
Plant Based Water.pdf
RushiDalve
0 Aufrufe
12 Folien
Cisco CCNA ITN (Introduction to Networks) - Certification
Mohamed Haathim Sharfraz
0 Aufrufe
1 Folie
Servo Stabilizer
Akil Siddiqui
0 Aufrufe
8 Folien
"Modern DevOps & Real Life Applications. 3.0.0-devops+20230318", Igor Fesenko
Fwdays
0 Aufrufe
29 Folien
Digital Marketing.pdf
COGENT IBS
0 Aufrufe
11 Folien
Anzeige

Manage Artifact Versioning, Security and Compliance

  1. 1. Manage Artifact Versioning, Security and Compliance
  2. 2. HELLO! I am EngTeongCheah Microsoft MVP You can find me at @walkercet 2
  3. 3. Package Security 3 1
  4. 4. Package Feeds ▰ Trusted source of packages ▰ Secured for access by authorized accounts 4
  5. 5. Package compliance ▰ Governmental ▰ Certification ▰ Standards Institute 5
  6. 6. Securing access to packagefeeds ▰ Restricted access for consumption ▰ Restricted access for publishing 6
  7. 7. Roles ▰ Reader ▰ Collaborator ▰ Contributor ▰ Stable parts ▰ Owner 7
  8. 8. Permission 8
  9. 9. Credentials ▰ Authentication is required for Azure Artifacts ▰ Transparently taken care of when logged into portal or in build task ▰ External package sources may required credentials 9
  10. 10. Open Source Software 10 2
  11. 11. Open-source Software Open-source software (OSS) is a type of computer software in which source code is released under a license in which the copyright holder grants users the right to study, change, and distribute the software to anyone and for any purpose. 11
  12. 12. Challengeto corporates ▰ Be of low quality ▰ Have no active maintenance ▰ Contain malicious code ▰ Have security vulnerabilities ▰ Have unfavourable licensing restrictions 12
  13. 13. Licenses and vulneabilities ▰ Discriminate against persons or groups ▰ Be specific to a product ▰ Restrict other software 13
  14. 14. License implications and rating 14 ▰ Compliancy ▰ Intellectual property ▰ Exclusive rights
  15. 15. Demo 15 2 Manage Open Source Security and License with WhiteSource
  16. 16. 17 THANKS! Anyquestions? You can find me at @walkercet
  17. 17. CREDITS ▰ MicrosoftDocs 18

×