Hi Rewanth, Thanks for the write-up as we're all looking to help users find secure solutions. Just a quick note that you're comparing Notary v1. Notary v2 was created, due to the limitations you've outlined. Which cosign chose to follow a subset of these requirements. Please see the scenarios and goals being implemented with Notary v2 for a current comparison. github.com/notaryproject/notaryproject/blob/main/requirements.md A walkthrough of Notary v2, with Kubernetes is available here: https://github.com/Azure/notation-azure-kv/blob/main/docs/nv2-sign-verify-aks.md Or, this post from Lachie: https://medium.com/@LachlanEvenson/container-signing-with-notary-v2-13dd425e95d6