February 1-2, 2023 | Seattle, WA
View More Details | Registration Information

The Sched app allows you to build your schedule but is not a substitute for your event registration. You must be registered for CloudNativeSecurityCon North America 2023 to participate in these sessions. If you have not registered but would like to join us, please go to the event registration page to purchase a registration.

Please note: This schedule is automatically displayed in Pacific Standard Time (PST), UTC -8. To see the schedule in your preferred timezone, please select from the drop-down menu to the right, above "Filter by Date."

The schedule is subject to change.
Back To Schedule
Thursday, February 2 • 4:40pm - 5:15pm
"Keyless" Code Signing Without Fulcio - Nathan Smith, Chainguard

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Feedback form is now closed.
Sigstore's certificate authority Fulcio has popularized the idea of "keyless" signing. The keyless method makes signing hassle free by removing the need to manage private keys. Do you need to run Fulcio yourself if you want the same convenient signing flow, but you want your own trust root? No! In this talk, we'll walk through the what keyless signing really means and how to configure existing PKI solutions like Vault and stepca to use it.

avatar for Nathan Smith

Nathan Smith

Software Engineer, Chainguard
Nathan is an open source software enthusiast with an interest in supply chain security, reliable infrastructure and digital autonomy. Nathan is a contributor to the Sigstore project, which aims to make signing code easy and ubiquitous.

Thursday February 2, 2023 4:40pm - 5:15pm PST
Room 606/607
  Supply Chains