Welcome
This is the home page of the SecCon - Transparency technologies for a secure continuum project, which is funded by aerOS
About
The rapid adoption of containerization introduces security risks, making it imperative for organizations to implement robust security measures throughout the container lifecycle to prevent vulnerabilities and misconfigurations that could lead to breaches or data loss. It comes as no surprise that the software supply chain becomes often the target of high-profile attackers, such as state-sponsored cyber-terrorism groups, which launch advanced persistent attacks that are very hard to detect and with widespread impact.
SecCon will use as starting point Linux Foundation's Sigstore tools, as integrated in ExcID's open-source Software Transparency as a Service (STaaS) platform to increase the security of the container images used in aerOS through traceability. StaaS provides and immutable, auditable, non-blockchain-based log, leveraging open-source TRL-9 components developed by Google, currently supporting planet-scale workloads.
News
- 26 Mar. 2025 A blog post describing our technology has been published. You can read it here. We would love your comments.
- 2 Feb. 2025 We have created an open-source repository where you can test our project's outcomes. Keep an eye also in STaaS source code which is being updated in the context of our project.
- 7 Jar. 2025 Welcome to the SecCon project!