Sigstore (Project Rekor)

Software Supply Chain Transparency: this team will work with industry and open source partners to build software infrastructure to cryptographically verify provenance of software

Advisors:

Santiago Torres-Arias

Description:

Sigstore, formerly Project Rekor, is part of a new, experimental product to provide “software supply chain transparency” --- the ability for software producers to identify software components throughout different vendors, communities and sub-organizations. With this, high assurance software products are able to identify counterfeit software, decomission vulnerable code, and stop hackers trying to poison software delivery pipelines. Students will work in system building, security evaluation and deployment of test infrastructure.

Prerequisites:

Basic programming, some knowledge of Golang may be useful, but not required. Interest in software security

Meeting Times:

Spring 2022: TBA
Fall 2022: TBA

Students

Faculty

Alumni

Parents

Partners

People

About

News & Events

Facts & Figures

Employment

Facilities

Diversity & Inclusion

Meet the Dean

Academics

Academic Units

Programs

Undergraduate Engineering Degrees

Graduate Engineering Degrees

Online Engineering Master's Degrees

Joint Undergraduate Degree

Purdue Engineering Professional Master's Programs

Online Master's Degrees

Professional Certifications

Professional Courses

FAQs

Graduate Certificates

Research

Purdue Engineering Initiatives

Lillian Gilbreth Postdoctoral Fellowships at Purdue Engineering

Giving

Sigstore (Project Rekor)

Advisors:

Description:

Prerequisites:

Meeting Times:

Discover

Explore

Connect

People