PUBLICATIONS.md

TAG Security Publications

This document lists all the publications and resources that TAG Security has produced.

Cloud Native Security Whitepaper

The Cloud Native Security Whitepaper (CNSWP) is a TAG Security effort to ensure the cloud native community has access to information about building, distributing, deploying, and running secure cloud native capabilities.

• Markdown (v2)
• PDF (v2)
• Audio (v1)

Translations

• Portuguese (v1)
• Chinese (v1)

Supply Chain Security

Software Supply Chain Best Practices

The Software Supply Chain Security Paper is a TAG Security effort to ensure the cloud native community has access to information about building, distributing, deploying, and running secure software supply chains.

• Markdown
• PDF

Evaluating your supply chain security

A framework for supply chain evaluation

• Markdown

Secure Software Factory

A reference architecture for securing the software supply chain

• Markdown
• PDF

Cloud Native Security Lexicon

Standardization of terminologies specific to Cloud Native Security

• Markdown

Use Cases & Personas

List of use cases to enable secure access, policy control and safety for users of cloud native technology

• Markdown

Policy

Formal Verification for Policy Configurations

• Markdown

Handling build-time dependency vulnerabilities

• Markdown

Secure Defaults: Cloud Native 8

• Markdown

Cloud Native Security Controls Catalog

Mapping of Cloud Native Security Whitepaper and Software Supply Chain Best Practices Paper to NIST SP800-53r5

• Markdown
• Spreadsheet

Security Assessments

TAG Security has conducted security assessments of several CNCF projects. These assessments are available to the public.

• Buildpacks
• Cloud Custodian
• Harbor
• In-toto
• Keycloak
• Kyverno
• OPA
• Spiffe-Spire