DeveloperWeek Management 2024 + AI DevSummit 2024 (+ DW Europe/LATAM 2024)

Daniel Drack, FullStackS GmbH, Senior DevOps Engineer

Everybody is talking about SBOM, attestation, MFA, signatures and other security measures - but who is actually implementing them?

This session mixes things up with a hybrid approach, based on the insights from a master's thesis that looks into how people are adopting security measures in software supply chains. We'll take a journey through the bits and pieces of cloud-native software supply chains, spotlighting the security steps for each part. Expect a friendly chat about what's currently working best, the bumps we might hit along the way, and some cool tools that can help. Plus, we've got some fresh data on how these practices are catching on (or not) in the real world, straight from our survey. This talk is your ticket to understanding the now of supply chain security and seeing how much of it is actually being put to use.