Open Source Service to Help Secure and Trust Your Software
Community Attestation Service / CAS - Codenotary Inc. (Codenotary)
- CAS stores all signatures inside of immudb, the standard for open source immutable databases.
- CAS is protected against tampering. All attestation data is integrity-checked and cryptographically verified by the CAS client.
- CAS is also protected against MITM attacks. The public key below is checked by every communication.
A Software Bill of Materials (SBOM) is a list of components in a piece of software.
Like a list of ingredients on food packaging -- where you might consult a label to avoid foods that may cause an allergy -- SBOMs can help companies avoid use of software that may harm their organization.
If defects are later found in a specific part, the SBOM makes it easy to locate affected products.