Securing Your Software Supply Chain with Sigstore (LFS182) Course Overview

Securing Your Software Supply Chain with Sigstore (LFS182) Course Overview

Securing Your Software Supply Chain with Sigstore (LFS182) is a one-day course designed to empower your team with the tools for a more secure software supply chain. Ideal for those familiar with Linux terminals, cloud computing, and DevOps concepts, this course dives deep into Sigstore, a solution for securely building and distributing software.

You will learn to use Cosign for signing and verifying containers, understand Fulcio as a trusted digital certificate authority, and explore Rekor, an immutable transparency log. You'll also discover the Policy Controller to enforce security policies in Kubernetes clusters and learn how to engage with the Sigstore community.

By the end of the course, you'll have the practical skills to secure your software supply chain effectively.

Purchase This Course

Fee On Request

  • Live Training (Duration : 8 Hours)
  • Per Participant
  • Guaranteed-to-Run (GTR)
  • date-img
  • date-img

♱ Excluding VAT/GST

Classroom Training price is on request

You can request classroom training in any city on any date by Requesting More Information

  • Live Training (Duration : 8 Hours)
  • Per Participant

♱ Excluding VAT/GST

Classroom Training price is on request

You can request classroom training in any city on any date by Requesting More Information

Request More Information

Email:  WhatsApp:

Koenig's Unique Offerings

Course Prerequisites

Prerequisites for Securing Your Software Supply Chain with Sigstore (LFS182) Course


To successfully undertake training in the Securing Your Software Supply Chain with Sigstore (LFS182) course, we recommend that learners have the following:


  • Familiarity with Linux terminals and experience using command line tools.
  • Intermediate understanding of cloud computing and DevOps concepts, particularly in using and building containers, as well as CI/CD systems like GitHub Actions.

These foundational skills will ensure you are well-prepared to grasp the course content and effectively apply the learnings in securing your software supply chain with Sigstore.


Target Audience for Securing Your Software Supply Chain with Sigstore (LFS182)

Securing Your Software Supply Chain with Sigstore (LFS182) equips IT professionals with the tools necessary for securing software throughout its lifecycle, tailored for those familiar with Linux, cloud computing, and DevOps.


  • DevOps Engineers
  • Cloud Engineers
  • Site Reliability Engineers (SREs)
  • Software Developers
  • System Administrators
  • Security Engineers
  • IT Managers
  • Software Architects
  • Cybersecurity Professionals
  • QA Engineers


Learning Objectives - What you will Learn in this Securing Your Software Supply Chain with Sigstore (LFS182)?

Introduction: The "Securing Your Software Supply Chain with Sigstore (LFS182)" course empowers you to enhance the security of your software lifecycle using Sigstore tools. It covers key concepts and practical implementations of secure signing, transparency logs, and policy enforcement.

Learning Objectives and Outcomes:

  • Understand the Basics of Sigstore:

    • Grasp the fundamental purpose and benefits of using Sigstore in your software supply chain.
  • Cosign: Signing and Verifying Containers and Artifacts:

    • Learn to sign and verify container images and other artifacts to ensure their integrity and authenticity.
  • Fulcio: The Trusted Digital Certificate Authority:

    • Understand how Fulcio acts as a certificate authority to provide trusted identities for signing artifacts.
  • Rekor: The Immutable and Secure Transparency Log:

    • Gain insights into using Rekor for maintaining an immutable and transparent log of signed artifacts.
  • Policy Controller: The Kubernetes Cluster Gatekeeper:

    • Implement Policy Controller to enforce security policies within Kubernetes clusters, ensuring only signed and verified containers are deployed.
  • Practical Implementation:

    • Hands-on exercises and practical examples to apply Sigstore tools in real-world scenarios.
  • Community Engagement:

    • Learn how

Target Audience for Securing Your Software Supply Chain with Sigstore (LFS182)

Securing Your Software Supply Chain with Sigstore (LFS182) equips IT professionals with the tools necessary for securing software throughout its lifecycle, tailored for those familiar with Linux, cloud computing, and DevOps.


  • DevOps Engineers
  • Cloud Engineers
  • Site Reliability Engineers (SREs)
  • Software Developers
  • System Administrators
  • Security Engineers
  • IT Managers
  • Software Architects
  • Cybersecurity Professionals
  • QA Engineers


Learning Objectives - What you will Learn in this Securing Your Software Supply Chain with Sigstore (LFS182)?

Introduction: The "Securing Your Software Supply Chain with Sigstore (LFS182)" course empowers you to enhance the security of your software lifecycle using Sigstore tools. It covers key concepts and practical implementations of secure signing, transparency logs, and policy enforcement.

Learning Objectives and Outcomes:

  • Understand the Basics of Sigstore:

    • Grasp the fundamental purpose and benefits of using Sigstore in your software supply chain.
  • Cosign: Signing and Verifying Containers and Artifacts:

    • Learn to sign and verify container images and other artifacts to ensure their integrity and authenticity.
  • Fulcio: The Trusted Digital Certificate Authority:

    • Understand how Fulcio acts as a certificate authority to provide trusted identities for signing artifacts.
  • Rekor: The Immutable and Secure Transparency Log:

    • Gain insights into using Rekor for maintaining an immutable and transparent log of signed artifacts.
  • Policy Controller: The Kubernetes Cluster Gatekeeper:

    • Implement Policy Controller to enforce security policies within Kubernetes clusters, ensuring only signed and verified containers are deployed.
  • Practical Implementation:

    • Hands-on exercises and practical examples to apply Sigstore tools in real-world scenarios.
  • Community Engagement:

    • Learn how