Software Supply Chain Controls for Terraform
Quenn D
Description
<p>Understanding Software Supply Chain security threats for Terraform which has been the default for Infrastructure as Code is important. in this episode <a href="https://www.linkedin.com/in/ACoAAAQeiBwBBX_OQnXKnUQ7gmdSaPGDZ3bw8FQ">Mike Ruth</a> is sharing his experience of working on securing Terraform Cloud/Terraform Enterprise - no open source was harmed in the making of this episode.</p> <p><br></p> <p><strong>Episode YouTube:</strong> <a href="https://youtu.be/OUuTZC6Fcw0" target="_blank" rel="noopener noreferer">Video Link</a></p> <p><br></p> <p><strong>Host Twitter: Ashish Rajan (</strong><a href="https://twitter.com/hashishrajan"><strong>@hashishrajan</strong></a><strong>)</strong></p> <p><strong>Guest Socials: Mike's Linkedin </strong>(<a href="https://www.linkedin.com/in/mrsec/" target="_blank" rel="noopener noreferer">Mike Ruth</a>)</p> <p><strong>Podcast Twitter </strong>- <a href="https://twitter.com/cloudsecpod"><strong>@CloudSecPod</strong></a><strong> </strong><a href="https://twitter.com/CloudSecureNews"></a></p> <p><strong>If you want to watch videos of this LIVE STREAMED episode and past episodes - Check out our other Cloud Security Social Channels:</strong></p> <p>- <a href="https://www.cloudsecuritynewsletter.com/"><strong>Cloud Security Newsletter </strong></a></p> <p><strong>- </strong><a href="https://www.cloudsecuritybootcamp.com/"><strong>Cloud Security BootCamp</strong></a></p> <p><br></p> <p><strong>Spotify TimeStamp for Interview Question</strong></p> <p>(00:00) Introduction </p> <p>(03:27) A bit about Mike Ruth </p> <p>(04:01) What is Terraform?</p> <p>(05:38) Terraform in the context of supply chain </p> <p>(07:24) Flavors of Terraform</p> <p>(09:07) Deploying Terraform </p> <p>(12:25) Terraform Architecture </p> <p>(14:48) Research findings that Mike and Oca made</p> <p>(25:52) Securing Terraform Architecture</p> <p>(28:13) Poli
Creators
isla_wave
Creator