9 Securing Your Runtimes with Binary Authorization

In the previous chapter, you learned how to use Cloud Deploy to automate your software delivery process. In this chapter, we’ll describe Binary Authorization, a Google Cloud service that helps ensure you’re only deploying verified authorized container images to Google Cloud runtimes, further strengthening the security of your software products.

This chapter includes the following sections:

Understanding Binary Authorization concepts
Setting up Binary Authorization
Setting up attestations
Configuring Binary Authorization policies

Technical requirements

Before proceeding with this chapter, enable the following two APIs if they’re not already enabled:

Binary Authorization
Customer-managed encryption ...

Get Secure Continuous Delivery on Google Cloud now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Secure Continuous Delivery on Google Cloud by Giovanni Galloro, Nathaniel Avery, David Dorbin

9

Securing Your Runtimes with Binary Authorization

Technical requirements

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly