Episode 69 - January 29th, 2022 - [Secure Software Supply Chain and SBOM]
In this episode Michael and Mark talk with guest Adrian Diglio
(
)
about Secure Software Supply Chain and Software Bill of Materials or SBOM.
We also discuss Azure Security news about SQL Server, Azure SQL DB, Azure Database for MySQL, Azure Database for PostgreSQL and Application Secure Groups in Private Endpoints. Mark goes over MCRA, Immutable Laws of Cybersecurity and Security Architecture Design.
We also discuss Azure Security news about SQL Server, Azure SQL DB, Azure Database for MySQL, Azure Database for PostgreSQL and Application Secure Groups in Private Endpoints. Mark goes over MCRA, Immutable Laws of Cybersecurity and Security Architecture Design.
Links
- Summary of the 2022 Security Investments in Azure SQL and SQL Server 2022
- Generally available: Azure Active Directory authentication for SQL Server 2022
- Public Preview: Microsoft Purview access policies for SQL Server 2022
- General availability: Encryption using CMK for Azure Database for PostgreSQL - Flexible Server
- General availability: Azure AD authentication with Azure Database for MySQL - Flexible Server
- General availability: Azure Database for MySQL - Flexible Server data encryption with CMK
- General availability: Application security groups support for private endpoints
- The Chief Information Security Officer (CISO) Workshop Training
- Microsoft Cybersecurity Reference Architectures
- The immutable laws of security
- MCRA Intro
- Executive Order 14028: Improving the Nation's Cybersecurity
- Generating Software Bills of Materials (SBOMs) with SPDX at Microsoft
- Microsoft open sources its software bill of materials (SBOM) generation tool
- GitHub: sbom-tool
- GitHub: component-detection
- GitHub: Demo-for-Microsoft-SBOM-Tool