►
From YouTube: Securing Your Container Native Supply Chain with SLSA, Github and Te... Laurent Simon & Priya Wadhwa
Description
Don’t miss out! Join us at our upcoming hybrid event: KubeCon + CloudNativeCon North America 2022 from October 24-28 in Detroit (and online!). Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Securing Your Container Native Supply Chain with SLSA, Github and Tekton - Laurent Simon, Google & Priya Wadhwa, Chainguard
Supply chain security has been a huge topic of discussion in recent months, and protecting your supply chain has become more important than ever. In this talk, Laurent Simon and Priya Wadhwa will discuss how to practically apply the principles of SLSA to secure your container native build system. They’ll start by covering how to use the in-toto project to create and verify source code attestations. They’ll also do a step-by-step demo of achieving SLSA Level 2 in common build systems like Tekton and Github Actions. If you’ve been wanting to secure your supply chain, but haven’t known where to start, then this talk is for you! Priya has given a related talk at SupplyChainSecurityCon on integrating Sigstore with Tekton. That talk focused on the theoretical integration, and this talk will practically show users how to secure an existing Tekton instance. This talk will also cover other build systems (e.g. Github Actions) which users may be using as part of their cloud native deployments.
B
A
B
So
you've
probably
heard
a
lot
about
software
supply
chain.
Security
in
the
news
recently,
as
the
graph
shows
attacks
are
on
the
rise
and
it's
becoming
really
important
to
start
to
understand
how
you
can
secure
your
supply
chain.
So,
let's
take
a
recent
attack
as
an
example:
the
npm
caller
package
attack.
B
B
Around
9
million
projects
depend
on
this
package,
either
directly
or
as
a
transitive
dependency,
which
is
really
scary
as
a
developer.
It
might
be
intimidating
to
know
where
to
start
when
it
comes
to
securing
your
supply
chain.
So,
in
this
presentation
we'll
discuss
practical
steps,
you
can
take
to
start
improving
the
security
of
your
supply
chain.
A
A
So
a
quick
agenda
for
today
when
discussing
supply,
chain
security,
it's
important
to
have
some
metrics
or
a
framework
to
actually
quantify
how
secure
your
supply
chain
is.
So
that's
why
we're
going
to
start
by
talking
about
salsa,
which
is
the
framework
we're
going
to
be
using
to
determine
how
secure
our
for
our
supply
chains
actually
are.
B
So
what
is
salsa
salsa
is
an
acronym
that
stands
for
supply
chain
levels
for
software
artifacts.
You
can
think
of
salsa
as
a
framework
or
a
checklist.
Basically,
a
list
of
things
that
you
want
in
your
supply
chain,
depending
on
how
secure
you
want
it
to
be.
Salsa
is
not
a
tool
or
a
service.
It's
more
a
set
of
guiding
principles.
B
B
B
B
A
So
the
salsa
framework
has
four
levels
ranging
from
level
one
to
level
four.
It's
meant
to
be
incrementally
adoptable
and
it's
a
set
of
security
guidelines
established
by
industry,
consensus
level.
One
is
supposed
to
be
the
most
achievable
level,
while
level
four
represents
the
ideal
end
state
level.
Four
can
be
difficult
to
achieve
so
levels.
Two
and
three
are
meant
to
be
stepping
stones
on
your
path
to
achieving
salsa
level.
A
So
a
quick
overview
of
salsa
level,
1
salsa
level
1
is
the
most
achievable
level
with
only
two
requirements.
The
first
is
that
your
build
process
is
scripted,
and
the
second
is
that
you
have
some
kind
of
provenance
available,
some
sort
of
metadata
about
how
your
artifact
was
generated,
and
maybe
what
also
went
into
it.
A
A
A
A
A
So
the
main
benefit
of
six
store
is
that
it
eliminates
the
key
management
problem.
So
we
have
like
a
diagram
of
a
traditional
signing
situation
here,
where
we
have
a
maintainer
who
holds
onto
a
public
private
key
pair
signs
their
piece
of
software
and
then
distribute
distributes
it
to
an
end
user.
The
end
user
is
responsible
for
verifying
that
software
before
they
actually
use
it,
but
there's
a
few
issues
in
this
scenario.
A
A
So
this
is
where
six
store
comes
in.
It
solves
this
key
management
problem
so
that
maintainers
no
longer
have
to
keep
track
of
private
or
public
keys.
But
how
does
this
work
so?
You
can
see
we
have
this
updated
diagram
now,
which
includes
the
six
store
tools
and
services
that
I
had
mentioned
earlier.
A
So,
instead
of
holding
on
to
a
private
key
pair,
the
maintainer
actually
just
has
to
request
a
certificate
from
the
full
co
certificate
authority.
This
certificate
is
a
code
signing
certificate
and
contains
and
is
bound
to,
the
identity
of
the
maintainer.
In
this
case,
it's
the
maintainer's
email
address
the
certificate,
also
embeds
the
public
key
that
was
used
to
sign
this.
A
That
was
used
to
sign
sorry
that
is
associated
with
the
private
key
that
was
used
to
sign
the
artifact,
and
the
signature
is
bundled
along
with
a
certificate
and
stored
in
the
record
transparency
log.
This
is
really
convenient
because
the
log
is
public.
So
when
the
end
user
attempts
to
verify
the
software
artifact,
they
can
use
the
cosine
cli
tool
which,
under
the
hood,
will
retrieve
the
correct
entry
from
recore
and
do
all
the
verification
for
you
all.
A
So
the
nice
thing
about
focio
is
that
both
people
and
systems
can
request
full
co
certificates.
People
can
prove
their
identity
by
signing
in
with
an
email
address,
so
this
would
be
like
a
sign
in
with
github
or
sign
in
with
google
type
flow
that
you
might
have
seen
on
different
websites.
Yourself
systems
can
also
authenticate
and
request
full
seo
certificates,
so
workloads
can
use
the
spf
specification
and
there's
also
support
for
using
kubernetes
service
accounts
and
github
actions
invocations.
A
So
we're
going
to
be
using
these
last
two
in
our
demos
later
on
in
this
talk,
so
how
do
we
bring
salsa
and
six
store
together
to
actually
start
securing
some
build
systems
so
we'll
take
tecton
first
and
we'll
talk
about
github
after
so
what
is
tekton?
This
is
a
big
question
and
there's
a
lot
to
techton.
So
in
the
interest
of
time,
I'm
just
going
to
cover
the
important
bits
for
today's
talk,
but
I
would
highly
encourage
you
to
go.
Learn
more
about
tecton
if
you're
interested
for
now.
A
A
You
can
kind
of
think
of
tekton,
just
as
a
ci
cd
system,
where
you
would
do
anything
you
would
normally
want
to
do
in
cicd,
including
running
unit
tests,
running
integration,
tests,
building
some
sort
of
software
artifact
and
then
storing
it
somewhere.
For
your
end,
users
to
be
able
to
use
the
basic
unit
of
techton
is
the
tacton
task,
which
is
you
can
deploy
your
tacton
task
to
your
cluster.
If
you
look
on
the
right
side,
we
have
some
sample
yaml
for
a
typed
on
task.
A
A
So
what
do
we
know
once
a
task
run
has
has
completed?
Well,
there
are
a
few
key
pieces
of
information.
First,
we
know
whether
the
task
run
was
successful.
We
also
know
what
steps
we're
on
and
exactly
what
arguments
were
passed
in
and
then
finally,
we
know
what
artifacts
artifacts
may
have
been
built
in
this
task
run.
This
is
really
useful
when
trying
to
achieve
certain
salsa
levels.
A
A
Here's
a
little
diagram
I
drew
of
how
this
works.
Basically,
you
have
your
cluster
running
and
you
have
techton
pipelines,
which
is
the
core
techton
project
running
in
your
cluster.
When
you
start
a
task
run,
the
techdown
pipelines
project
is
responsible
for
executing
that
task
run.
Meanwhile,
tekton
chains
is
observing
all
the
task
runs
in
your
cluster
and
once
it
sees
that
the
attachment
has
successfully
completed
it'll,
try
and
extract
any
artifacts
that
it
recognizes
from
that
task.
Run
it'll
generate
signatures
for
that
artifact
generate
provenance
and
then
store
those
two
things.
A
Alongside
the
artifact
in
whatever
storage
back-end
you
have
configured,
this
could
be
an
oci
registry
or
a
gcs
bucket.
You
can
also
configure
various
types
of
signing
keys
to
actually
sign
these
things
with
tactile
chains,
including
kms
keys,
public
private
key
pairs
that
you
might
have
set
up
yourself
and
fulso,
which
we
had
talked
about
earlier.
A
So,
in
the
interest
of
time,
I've
already
created
the
cluster
that
I
will
be
doing
this
demo
on
it's
an
amazon,
eks
cluster
and
the
most
interesting
thing
about
how
I
created
this
was
I
passed
in
this
with
oidc
flag.
This
is
basically
going
to
allow
my
kubernetes
service
account
to
authenticate
to
vulcio
and
request
a
code
signing
certificate
for
the
piece
of
software
I'm
about
to
build.
A
So
I
already
have
tecton
pipelines
installed
in
this
cluster,
installing
chains
to
add
in
supply
chain
secure
the
supply
chain.
Security
manager
is
just
a
simple
control,
apply
command.
I've
already
run
this,
so
I
won't
run
it
again,
but
the
last
piece
of
configuration
we
need
to
do
is
tell
tacton
chains
exactly
how
we
want
to
generate
our
provenance
and
sign
it.
So
there
are
four
commands
here.
A
So,
let's
take
a
look
at
the
the
artifact,
we're
actually
going
to
build
we're
going
to
be
using
canaco
to
build
an
oci
image
and
push
it
to
a
registry.
So
this
is
the
task
that
we
plan
on
running
there's
just
a
few
parameters
passed
in
including
the
name
of
the
image.
We
want
to
build
a
few
results
here,
which
is
how
we're
going
to
tell
pekton
chains
that
an
artifact
was
built.
A
A
A
It'll
pull
it
down
and
we
can
see
that
it
has
printed
out
hello
world,
which
is
exactly
what
we
expected,
but
now
we
want
to
make
sure
that
the
image
that
we
built
was
signed
and
that
provenance
was
correctly
generated.
How
do
we
do
this?
The
nice
thing
is
that
under
the
hood,
tecton
chains
has
already
realized
that
an
artifact
was
built
attempted
to
sign
it
generated,
signed
provenance
and
stored
it
in
our
oci
registry
as
an
end
user.
It's
really
easy
to
verify
that
this
happened
using
the
cosine
tool.
A
A
If
we
pipe
this
into
jq,
we
can
get
a
little
bit
more
information
around
the
certificate
and
the
signature,
and
you
can
see
that
the
subject
in
the
certificate
is
a
service
account
that
we
were
running
under
and
that
the
issuer
is
points
to
my
eks
cluster
that
we
ran
in.
So
it's
really
cool.
We
didn't
have
to
worry
about
keys.
We
didn't
have
to
do
anything
everything
sort
of
just
happened
under
the
hood,
because
we
already
installed
tecton
chains.
A
And
looks
like
it
was
successful
again
we
see
our
certificate
subject,
our
certificate
issuer
url
and
we
can
take
a
look
at
the
provenance
that
was
generated
by
decoding
it
and
typing
it
into
jq,
and
you
can
see
that
we
have
our
provenance
now
in
the
salsa
providence
format.
The
subject
is
the
image
that
we
just
built,
and
you
can
see
that
all
the
steps
that
we
ran
exist
in
this
provenance,
so
we
know
exactly
how
it
was
built
and
also
when
it
was
built.
A
Cool,
so
you
can
see
that
by
just
by
adding
tecton
chains
into
our
existing
tecton
deployment,
we
were
able
to
achieve
salsa
2.,
assuming
your
code
is
already
in
version
control.
Our
builds
are
scripted
and
tucked
on
this
build
services.
Techton
providence
is
available,
authenticated
and
service
generated
since
it's
been
generated
by
tecton
chains,
so
tekton
plus
tecton
chains
equals
also
level
2.
B
B
B
Typically,
you
define
github
workflows
by
creating
a
file
under
github
workflows
on
your
repository.
Github
workflows
are
very
powerful
and
you
can
run
arbitrary
commands.
You
can
also
define
so-called
triggers
to
start
your
run.
For
example,
you
can
start
to
run
on
an
incoming
pull
request
or
when
there's
a
new
push
to
a
branch
or
when
a
new
tag
is
created.
On
your
repository.
B
B
One
powerful
feature
of
github
workflows
is
the
ability
to
support
isolation
between
jobs,
so
you
can
define
different
jobs
in
the
same
workflow.
Here
we
have
two
jobs,
one
in
red
and
one
in
green
called
pr
and
secret,
even
though
they're
defined
in
the
same
workflow
those
jobs
run
in
isolation
in
red.
We
have
a
job
that
runs
an
incoming
pull
request.
B
B
So
what
this
means
is
that
the
maintainers
that
are
building
an
artifact
shouldn't
be
able
to
interfere
with
the
provenance
generation,
and
this
takes
us.
This
leads
us
to
the
the
last
requirement,
which
is
that
the
provenance
should
be
non-forgeable,
meaning
that
maintainers
shouldn't
be
able
to
lie
or
tamper
with
the
provenance
information.
B
B
B
Once
your
the
trigger,
once
the
the
run
is
triggered,
the
execution
is
handed
over
to
the
trusted
builder.
Here
on
the
right.
The
trusted
builder
is
hosted
in
a
different
repository
in
our
example.
It's
called
github.com
trusted
builder
and
the
trusted
builder
is
not
under
the
control
of
the
original
workflow
on
the
left
and
therefore
the
workflow
on
the
left
cannot
tamper
with
the
execution
of
the
trusted
builder.
B
B
B
B
Key
generation
and
management
happens
transparently
through
workflow
identity.
So
when
the
trusted
builder
runs,
it
is
provisioned
with
a
unique
x509
certificate
that
unique,
uniquely
identifies
it,
and
for
this
we
use
oidc
as
priya
mentioned
earlier.
This
certificate
is
then
used
to
sign
the
provenance.
B
Just
to
make
things
even
clearer,
I
want
to
compare
the
web
pki
and
the
salsa
pki
that
we've
built
using
six
store
on
the
web.
A
ca
may
be
verisign
and
when
you
visit
a
google
website,
the
x509
certificate
that
you
get
during
the
tls
handshake
will
have
the
google
identity,
such
as
3w.google.com
in
the
salsa
pki,
with
six
store.
The
ca
is
six
store
and
when
you
verify
the
provenance,
the
certificate
contains
the
identity
of
the
builder.
B
B
B
B
B
As
a
user,
what
you
have
to
do
is
define
a
workflow,
a
github
workflow.
Here
it's
called
code
minus
publish.yaml,
and
then
here
we
define
different
jobs.
You
can
ignore
this
part.
You
can
look
at
it
if
you're
interested,
but
but
the
most
interesting
part
of
this
workflow
is
this
this
spot
here,
the
build
part
all
we
do
here
is
we
basically
call
a
trusted
builder,
which
is
hosted
under
this
repository,
and
then
we
pass
a
bunch
of
arguments
to
cool.
B
B
B
B
B
Okay,
so
salsa
pronouns
was
verified
and
docker
the
docker
container
is
printed.
That's
that's
what
it
resolves
to
these
tactics
now,
let's
take
this
command
and
change
the
expected
source
repository,
let's
say
23
and
as
expected,
it
doesn't
pass
the
verification
because
the
source
repository
doesn't
match.