How The Update Framework Improves Security of Software Updates
Apr 25, 2017, 08:00 (0 Talkback[s])
(Other stories by Sean Michael Kerner)
Justin Cappos, assistant professor at New York University, detailed how TUF works and what's coming to further improve the secure updating approach in a session at last week's DockerCon 17 conference in Austin, Texas. Simply using HTTPS and Transport Layer Security (TLS) to secure a download isn't enough as there have been many publicly reported instances of software repositories that have been tampered with, Cappos said.