Learning Center

Concepts that secure the supply chain.

Definitions, explainers, and reference material for software supply-chain security from the Kusari team.

Featured

Medical Device Cybersecurity

Medical device cybersecurity, third-party and legacy software risk.

Software Bill of Materials (SBOM)

A comprehensive list of components in a software product.

A

Access Control Mechanisms that restrict unauthorized access to resources.
AI Code Review An automated process that uses machine learning and natural language processing to analyze source code for bugs, security vulnerabilities, style inconsistencies, and other issues.
API Security Measures to protect Application Programming Interfaces from threats.
Application Security Posture Management (ASPM) A cybersecurity approach that continuously monitors and improves security for an organization's applications their lifecycle.
Artifact Repository A storage location for software build artifacts.
Artifact Signing The practice of applying cryptographic signatures to software artifacts.
Attack Prevention Many attacks get in through external open source and vendor dependencies.
Attack Surface Analysis Identifying and assessing potential attack vectors.
Attestation A cryptographically signed statement verifying software artifact facts like build process and security scans.

B

C

D

E

F

G

H

I

J

K

L

M

N

O

P

Q

R

S

T

U

V

W

X

Y

Z