CloudDevelopersDevOpsDevSecOpsFeaturedKubernetesLet's TalkOpen SourceSecurityVideo

Slim.AI Simplifies Software Supply Chain Security For Developers | Ayse Kaya


At KubeCon + CloudNativeCon EU, I sat down with Ayse Kaya, Senior Director of Strategic Insights & Analytics at Slim.AI, to talk about the three S’s of Software Supply Chain Security —  SBOMs (Software Bill of Materials), Signing, and Slimming.

Open source lies at the core of the company, and Kaya talks about one of their open source projects, DockerSlim, which provides a set of commands to simplify and optimize your developer experience with containers.

She goes into detail about Slim.AI’s key missions: to help developers build secure containers faster and to help organizations secure their software supply chain automatically.

We then talked about one of the hottest topics at KubeCon EU this year — Security, especially Software Supply Chain Security. Kaya feels that there is increased awareness around the software supply chain.

Slim.AI recently released a Container report and Kaya shared some of the key findings of the report. “As a cybersecurity veteran, I was expecting to see 1-2% of vulnerabilities in the high-end critical category, but there were around 20% of vulnerabilities on average. It’s an enormous attack surface, especially in production,” she said.

Key highlights from this video interview are:

  • Kaya says that the company’s core missions are helping developers build secure containers faster, and enabling organizations to secure their software supply chain automatically.
  • Role of open source at the company.
  • We discussed how much awareness is there now around the software supply chain security.
  • Security in the cloud-native world continues to be a challenge for both people and machines.
  • Kaya goes into the concept of the three S’s of security: SBOMs, signing, and slimming, and how they can help with securing containers.
  • Key findings from the Slim.AI Container report.

Connect with Ayse Kaya (LinkedIn, Twitter)

Solutions: Get started with Slim.AI solutions 

The summary of the show is written by Emily Nicholls.

Read Transcript

Don't miss out great stories, subscribe to our newsletter.

Private 5G Networks Vs Wi-Fi

Previous article

What Is Infrastructure As Code & Why It Matters | Scaling Infrastructure As Code Episode -1

Next article
Login/Sign up