Cargando…
Establishment of a new workflow to manage software vulnerabilities
This report will explain in details the process of establishing a new workflow used to handle vulnerabilities present in software container images produced by CERN in a more efficient way. It includes the creation of a script analyzing each image and creating a corresponding Software Bill Of Materia...
| Autor principal: | |
|---|---|
| Lenguaje: | eng |
| Publicado: |
2022
|
| Materias: | |
| Acceso en línea: | http://cds.cern.ch/record/2826626 |
| _version_ | 1780973846064529408 |
|---|---|
| author | Pratoussy, Martin |
| author_facet | Pratoussy, Martin |
| author_sort | Pratoussy, Martin |
| collection | CERN |
| description | This report will explain in details the process of establishing a new workflow used to handle vulnerabilities present in software container images produced by CERN in a more efficient way. It includes the creation of a script analyzing each image and creating a corresponding Software Bill Of Material (SBOM), as well as the deployment of the cloud application that will make global metrics based on those SBOMs available for the security and the management team. |
| id | cern-2826626 |
| institution | Organización Europea para la Investigación Nuclear |
| language | eng |
| publishDate | 2022 |
| record_format | invenio |
| spelling | cern-28266262022-09-09T19:14:58Zhttp://cds.cern.ch/record/2826626engPratoussy, MartinEstablishment of a new workflow to manage software vulnerabilitiesComputing and ComputersThis report will explain in details the process of establishing a new workflow used to handle vulnerabilities present in software container images produced by CERN in a more efficient way. It includes the creation of a script analyzing each image and creating a corresponding Software Bill Of Material (SBOM), as well as the deployment of the cloud application that will make global metrics based on those SBOMs available for the security and the management team.CERN-STUDENTS-Note-2022-133oai:cds.cern.ch:28266262022-09-09 |
| spellingShingle | Computing and Computers Pratoussy, Martin Establishment of a new workflow to manage software vulnerabilities |
| title | Establishment of a new workflow to manage software vulnerabilities |
| title_full | Establishment of a new workflow to manage software vulnerabilities |
| title_fullStr | Establishment of a new workflow to manage software vulnerabilities |
| title_full_unstemmed | Establishment of a new workflow to manage software vulnerabilities |
| title_short | Establishment of a new workflow to manage software vulnerabilities |
| title_sort | establishment of a new workflow to manage software vulnerabilities |
| topic | Computing and Computers |
| url | http://cds.cern.ch/record/2826626 |
| work_keys_str_mv | AT pratoussymartin establishmentofanewworkflowtomanagesoftwarevulnerabilities |