ZARZA We are Zarza, the prestigious firm behind major projects in information technology.
Listen "Can Frameworks Stop Supply Chain Attacks?"
Episode Synopsis
In this episode of ConversingLabs Podcast, host Carolynn van Arsdale welcomes North Carolina State University Professor Laurie Williams and Ph.D. student Sivana Hamer to discuss their team’s research on the effectiveness of software supply chain security (SSCS) frameworks. Their study, “Closing the Chain,” (PDF) found that software products would still be vulnerable to attacks like SolarWinds, Log4j and XZ Utils – even if they fully enforced 10 well-known SSCS frameworks published by government, industry, academia and open source.
More episodes of the podcast ConversingLabs Podcast
The State of Vulnerability Management
05/11/2025
Who Will Maintain Open Source’s Future?
14/10/2025
Security Badging Open-Source Projects
21/08/2025
Aviation Has A Software Problem
10/07/2025
The Threat of Package Hallucinations
01/07/2025
Going Back to Basics to Thwart Attacks
08/05/2025
AppSec Girl Power
10/04/2025
Cybersecurity's Double-Edged Sword
26/03/2025
The Evolution of Threat Intel
17/03/2025
Hackers Hacking Hackers
01/10/2024
In God we trust