Search results for: notary


Accepted to CNCF on October 24, 2017

A CLI tool to sign and verify artifacts

SiliconANGLE: “CNCF’s Notary Project evolves container signing for enhanced supply chain security”

Posted on March 29, 2024

The software supply chain can be challenging to maintain for companies across the chain, causing potential bottlenecks delaying software deployment, which can hurt businesses deeply in the long run.

Join Notary Project at KubeCon + CloudNativeCon Europe 2024!

Posted on March 19, 2024

As containers and cloud native artifacts become common deployment units, users want to make sure that they are authentic in their environments. Notary Project is a set of tools and specifications intended to provide a cross-industry standard for…

Techzine: “CNCF’s Notary and Notation get first full release”

Posted on August 29, 2023

The Cloud Native Computing Foundation’s (CNCF) Notary Project and Notation Project standardization projects for supply chain security have received a major update with version 1.0.0, marking their first full release.

Notary Project announces a major release!

Posted on August 28, 2023 | By Notary Project Release Team

Project post originally published on the Notary Project blog by the Notary Project Release Team The Notary Project maintainers are proud to announce a major release, including Notary Project specifications v1.0.0, notation v1.0.0, notation-go v1.0.0, and notation-core-go v1.0.0 which are ready for production…

SD Times: “SD Times: CNCF’s Notary and Notation projects get major update”

Posted on August 28, 2023

Notary, the CNCF project that provides cross-industry standards for supply chain security, has announced a major release. 

The Notary project completes fuzzing security audit

Posted on March 21, 2023

Community post also published on the Notary blog by Adam Korczynski, David Korczynski, and Feynman Zhou Reviewed by Pritesh Bandi, Samir Kakkar, Shiwei Zhang, Toddy Mladenov, Vani Rao, Yi Zha The Notary Project is happy to announce the…

Cloud Native Live: Notary v2 – Promoting Signed Artifacts

Posted on November 16, 2021

Containers are the next major virtualization stack, providing an easy means to build a deployment package that encompasses your code, binaries and dependencies. How do you know the container image your deploying was built by a vendor, or…

Enforcing image trust on Docker containers using Notary

Posted on July 28, 2021

Guest post originally posted on the Infracloud blog by Frederick Fernando Why worry about software supply chain security? In the past few years, we have seen attacks such as NotPetya and Sunburst, which has shifted the industry’s focus to secure their…

SDxCentral: "CNCF’s latest projects TUF and Notary aimed at security"

Posted on October 24, 2017

The Cloud Native Computing Foundation (CNCF) filled in a missing security component with the inclusion of two new projects under its open source guidance. The CNCF Technical Oversight Committee voted in the security-focused Notary and The Update Framework…