ietf-wg-scitt / draft-ietf-scitt-architectureLinks
An Architecture for Trustworthy Digital Supply Chain Transparency Services
☆13Updated this week
Alternatives and similar repositories for draft-ietf-scitt-architecture
Users that are interested in draft-ietf-scitt-architecture are comparing it to the libraries listed below
Sorting:
- A specification for signing methods and formats used by Secure Systems Lab projects.☆78Updated 9 months ago
- Tooling and library for generation, validation and verification of supply chain metadata documents and frameworks☆31Updated last month
- Source Code Transparency☆11Updated last year
- A TUF repository and signing tool☆37Updated this week
- Securing open-source package ecosystems by originating, validating, and augmenting build attestations.☆42Updated this week
- Software Supply Chain Attribute Integrity (SCAI) Demos and CLI tools☆18Updated this week
- TUF repository for Sigstore trust root☆105Updated this week
- Log monitor for Rekor to verify immutability and monitor entries☆36Updated this week
- A specification including, problem statement, use cases, requirements, and architectural constituents for a Transparency Service in suppo…☆14Updated 2 years ago
- Cryptography Bill of Materials☆68Updated 4 months ago
- A CLI tool for creating secure by design/default source repos.☆25Updated 10 months ago
- ☆26Updated last week
- The Great Multi-Factor Authentication (MFA) Distribution Project of the Open Source Security Foundation (OpenSSF). We work to distribute …☆54Updated 3 years ago
- Labeled vulnerability-package match pairs used as ground truth to evaluate vulnerability scanners☆11Updated last week
- Sigstore's Protocol Buffer specifications☆33Updated this week
- ☆10Updated last year
- Making transparency normal!☆24Updated last year
- Supply Chain Query Tool☆13Updated 3 years ago
- Report on quality of SBOM contents☆17Updated 6 months ago
- Technical Advisory Council☆125Updated this week
- IETF RATS terms cheat sheet☆11Updated 2 years ago
- ☆62Updated 11 months ago
- Attestation verification services based on Veraison components☆27Updated 3 weeks ago
- A proof-of-concept SLSA provenance generator for Jenkins☆24Updated 10 months ago
- Formal specification of attestation mechanisms in Confidential Computing☆21Updated 9 months ago
- ☆29Updated this week
- Go implementation of The Update Framework heavily influenced by python-tuf☆14Updated last year
- Entity Attestation Token IETF Draft Standard☆18Updated 2 months ago
- Search Rekor for entries☆34Updated 2 months ago
- Signature Transparency Log designed for ease of use, low cost, and minimal maintenance☆15Updated this week