ietf-wg-scitt / draft-ietf-scitt-architectureLinks
An Architecture for Trustworthy Digital Supply Chain Transparency Services
☆14Updated last week
Alternatives and similar repositories for draft-ietf-scitt-architecture
Users that are interested in draft-ietf-scitt-architecture are comparing it to the libraries listed below
Sorting:
- A TUF repository and signing tool☆40Updated this week
- TUF repository for Sigstore trust root☆108Updated this week
- A specification for signing methods and formats used by Secure Systems Lab projects.☆85Updated 2 weeks ago
- ☆27Updated this week
- Software Supply Chain Attribute Integrity (SCAI) Demos and CLI tools☆18Updated 2 weeks ago
- Attestation verification services based on Veraison components☆30Updated last week
- Technical Advisory Council☆131Updated this week
- Cryptography Bill of Materials☆72Updated 2 weeks ago
- Supply Chain Integrity Transparency and Trust ledger application using Confidential Consortium Framework (CCF)☆39Updated this week
- Tooling and library for generation, validation and verification of supply chain metadata documents and frameworks☆33Updated 5 months ago
- Log monitor for Rekor to verify immutability and monitor entries☆38Updated last week
- OpenVEX Specification☆158Updated 4 months ago
- Formal specification of attestation mechanisms in Confidential Computing☆22Updated last year
- ☆62Updated last week
- Go library for building tile-based transparency logs (tlogs)☆98Updated this week
- A specification including, problem statement, use cases, requirements, and architectural constituents for a Transparency Service in suppo…☆14Updated 2 years ago
- SCITT API Emulator☆10Updated 10 months ago
- A guide on coordinated vulnerability disclosure for open source projects. Includes templates for security policies (security.md) and disc…☆138Updated last year
- Collating an overview of the open source software supply chain landscape -- and synthesizing that survey in a hopefully-useful way.☆33Updated 2 years ago
- A CLI tool for creating secure by design/default source repos.☆26Updated last year
- Specification and other related documents.☆49Updated 8 months ago
- sget is a keyless safe script retrieval and execution tool☆18Updated 3 years ago
- Go packages built on go-tpm providing a high-level API for using TPMs☆267Updated last week
- IETF RATS terms cheat sheet☆12Updated 2 years ago
- A functional type system for policy inspection, audit and enforcement.☆13Updated 2 years ago
- Machine-readable specification for the attestation of security-relevant data.☆63Updated 2 weeks ago
- in-toto Attestation Framework☆298Updated 3 weeks ago
- ☆11Updated last week
- Format agnostic SBOM tooling☆115Updated this week
- The model for the information captured in SPDX version 3 standard.☆94Updated last week