Loading…
September 16-18, 2024
Vienna, Austria
View More Details & Registration
Note: The schedule is subject to change.

The Sched app allows you to build your schedule but is not a substitute for your event registration. You must be registered for Open Source Summit Europe 2024 to participate in the sessions. If you have not registered but would like to join us, please go to the event registration page to purchase a registration.

This schedule is automatically displayed in Central European Summer Time (UTC/GMT +2). To see the schedule in your preferred timezone, please select from the drop-down menu to the right, above "Filter by Date."

IMPORTANT NOTE: Timing of sessions and room locations are subject to change.

Intermediate clear filter
arrow_back View All Dates
Monday, September 16
 

11:20 CEST

SBOM Implementation Reality - from Crawl to Walk, the SPDX Lite Profile for the First Step - Norio Kobota, Sony Group Corporation & Takashi Ninjouji, Toshiba Corporation
Monday September 16, 2024 11:20 - 12:00 CEST
This session will introduce the SPDX Lite profile, its background, and what and how it solves with many JSON examples. The Lite profile of SPDX 3.0 is designed to make it quick and easy to start creating a Software Bill of Materials (SBOMs) when a company has limited capacity for introducing new items into its process. Over the past few years, the importance of SBOM has increased. As interest in SBOM from government agencies and industries grows, the SBOM specification extends significantly to meet these various needs. SPDX Lite is a lightweight and compact SBOM specification. The OpenChain Project Japan WG explores and promotes SBOM. The focus is on making the SBOM practical from security assurance and license compliance perspectives and on sharing and transferring SBOM across the global software supply chain in any industry. SPDX Lite is one of the achievements of collaboration between the OpenChain project and the SPDX project. Attendees in this session will learn the first steps to creating an SBOM using the Lite profile of SPDX 3.0 by several examples of SBOM documents that address regulations and requirements.
Speakers
avatar for Takashi Ninjouji

Takashi Ninjouji

Chief Specialist, Toshiba Corporation
Takashi Ninjouji, Chief Specialist at Toshiba Corporation, works on open source, open standards, and compliance and was the first head of OSPO. He is strongly attracted to open source to collaborate with diverse communities. He is a member of the OpenChain Project's governing board... Read More →
avatar for Norio Kobota

Norio Kobota

Senior Open Source Strategist, Sony Group Corporation
Norio Kobota is a Senior Open Source Strategist in Sony Group Corporation. He is the chair of Open Source Software License Committee in Sony and works to improve OSS compliance and relationships with OSS communities. He represents Sony as a board member of OpenChain Project. And he... Read More →
Monday September 16, 2024 11:20 - 12:00 CEST
Room 0.49-0.50 (Level 0)
  Operations Management Summit

12:15 CEST

Open Source and IP Departments: Risk Containment and Portfolio Management - Shane Coughlan, The Linux Foundation
Monday September 16, 2024 12:15 - 12:35 CEST
Product teams, R&D teams and OSPOs occasionally find themselves in an adversarial situation with IP Departments around open source and how it should be managed in an organization. This is usually due to misunderstandings about how open source provides value and how the risks associated with it can be contained. With open source increasingly necessary for organizations to compete effectively, it is important to ensure all departments understand its strategic importance, and how to manage it in the context of their KPIs and requirements. This talk will explain how to collaborate with IP Departments using the language of external risk containment and internal portfolio management, and help IP Department staff assess open source as part of a diversified IPR strategy.
Speakers
avatar for Shane Coughlan

Shane Coughlan

General Manager, OpenChain Project
Shane Coughlan is an expert in communication, security and business development. His professional accomplishments include spearheading the licensing team that elevated OIN into the largest patent non-aggression community in history and establishing the first global network for open... Read More →
Monday September 16, 2024 12:15 - 12:35 CEST
Room 0.49-0.50 (Level 0)

12:15 CEST

Virter – How the "Docker for VMs" Can Help You Test the Linux Kernel - Christoph Böhmwalder, LINBIT HA-Solutions GmbH
Monday September 16, 2024 12:15 - 12:55 CEST
Testing the Linux kernel and its associated components at scale presents unique challenges compared to other software projects. While user-space projects can usually use containers to efficiently and quickly run their integration tests, kernel-level software requires virtual machines, making the process more difficult. At LINBIT, we also notice this when developing our Linux kernel driver, DRBD, and other components that depend on it.

That is why, after several iterations with other approaches, we have created our own open-source tool for the task: Virter, a "Docker for VMs."
Virter isn't just a proof-of-concept; it's a practical solution. Its primary design goal is to simplify the provisioning, cloning, and running of virtual machines. We currently use it to run around 40,000 VM instances every day as part of our testing efforts.

In this talk, we will share our experience testing the Linux kernel, a journey that ultimately led to the creation of Virter. We will demonstrate how we now use Virter to effectively and efficiently test Linux kernel components and explore how your workflow might benefit from it, too.
Speakers
avatar for Christoph Böhmwalder

Christoph Böhmwalder

Software Engineer, LINBIT HA-Solutions GmbH
Christoph has been with LINBIT for five years, contributing, among other things, to the development of DRBD – a software-based driver used for block-level replication across the network. Within the Linux kernel ecosystem, he focuses mainly on automated testing and CI/CD workflows... Read More →
Virter pdf
Monday September 16, 2024 12:15 - 12:55 CEST
Hall M2 (Level 1)
  LinuxCon

12:35 CEST

Enhancing Kernel Functional Safety Analysis with KS-nav - Alessandro Carminati & Gabriele Paoloni, Red Hat
Monday September 16, 2024 12:35 - 12:55 CEST
In order to make functional safety claims on SW components, having a clear understanding of the underlying software architecture is crucial. However, if SW architectural documentation is missing, understanding how software operates and how its parts fit together can be challenging. For the Linux kernel and many other OSS SW, such documents are absent and instead, analysts must rely on code, which can be hard to read.
ks-nav is a tool designed to help in reverse engineering and understanding the code by generating diagrams that highlight the interactions between code elements and sub-elements.

ks-nav relies on binary images instead of source code analysis to get rid of the uncertainty introduced by configurations, compiler optimizations, and any other toolchain related issues. Additionally, using the MAINTAINERS file, it precisely pinpoints subsystems, enabling users to delve into their interactions with clarity.

This session focuses on:
* Why understanding the code is critical in FuSa activities;
* How ks-nav works, how it addresses the various challenges of analyzing the code;
* An example of how ks-nav can be used to support an expert-driven FMEA for a specific use case.
Speakers
avatar for Gabriele Paoloni

Gabriele Paoloni

Sr SW Principal Engineer, Red Hat
Gabriele Paoloni is an Open Source Community Technical Leader at Red Hat. He is a passionate technologist and has strong experience in both functional safety and Linux Kernel development, including previous roles leading FuSa software architecture for Intel platforms, CCIX vice chairman... Read More →
avatar for Alessandro Carminati

Alessandro Carminati

Principal Software Engineer, Red Hat
As a Linux Kernel Engineer within the RedHat Automotive Team, I specialize in both upstream contributions and downstream efforts, focusing on enhancing Linux kernel functionality for automotive.With a background in embedded Linux development and Linux security for embedded systems... Read More →
Monday September 16, 2024 12:35 - 12:55 CEST
Room 2.15 (Level 2)
  Critical Software Summit

13:20 CEST

AOSP Developers Birds of a Feather - Chris Simmonds, 2net Ltd
Monday September 16, 2024 13:20 - 14:00 CEST
This Birds of a Feather meeting is an opportunity for all developers working with embedded Android to come together and share ideas, grumbles and clever hacks. Some of the topics you might like to talk about include these: * Building AOSP * Creating and maintaining board support packages * Integration with Android Studio * Testing and debugging * Security, SELinux, secomp, sandboxing Come along if you find *any* of this stuff interesting!
Speakers
avatar for Chris Simmonds

Chris Simmonds

software consultant, 2net Ltd
Chris Simmonds is a software consultant and professional geek living in Northern England. He has more than two decades of experience in designing and building open-source embedded systems. He is a big believer in Open Source and the importance of community. He is the author of the... Read More →
Monday September 16, 2024 13:20 - 14:00 CEST
Hall C (Level 2)
  Embedded Linux Conference

14:15 CEST

Panel Discussion: eBPF: A New Era in Cloud Infrastructure Tools - Liz Rice, Isovalent; Frederic Branczyk, Polar Signals Inc.; Hemanth Malla, Datadog; Yusheng Zheng, EUNOMIA INC.; and Richard Simon, T-Systems International
Monday September 16, 2024 14:15 - 14:55 CEST
eBPF has become something of a buzzword recently, but why is it being used in so many tools for observability, security and networking? What does it bring that other approaches don't offer? How can you leverage the power of eBPF in your organization? Join this session to learn from the creators and maintainers of leading open source eBPF projects about how this kernel technology enables high-performance, scalable cloud infrastructure tools.
Speakers
avatar for Liz Rice

Liz Rice

Chief Open Source Officer, Isovalent, now part of Cisco
Liz Rice is Chief Open Source Officer at Isovalent, the creators of the Cilium project, and now part of Cisco. Currently on the boards of the CNCF and OpenUK, she was chair of the CNCF's Technical Oversight Committee 2019-2022, and Co-Chair of KubeCon + CloudNativeCon in 2018. She... Read More →
avatar for Hemanth Malla

Hemanth Malla

Senior Software Engineer, Datadog
Hemanth Malla is a Senior Software Engineer working on Kubernetes and container networking at Datadog. He is also a Cilium CNCF maintainer. Previously he worked on various distributed systems in industries like e-commerce, fintech and high frequency trading. Apart from computers... Read More →
avatar for Frederic Branczyk

Frederic Branczyk

Founder, Polar Signals
Frederic is the founder of Polar Signals. Before founding Polar Signals he was a senior principal engineer and main architect for all things Observability at Red Hat, joining through the CoreOS acquisition. Frederic is a Prometheus & Thanos maintainer and tenured as a tech lead for... Read More →
avatar for Yusheng Zheng

Yusheng Zheng

eunomia-bpf - Open Source Developer, EUNOMIA INC.
Yusheng Zheng is an active open source contributor and the founder of the eunomia-bpf lab. With a focus on eBPF, she has developed notable projects, including userspace eBPF runtime for Uprobe and Syscall hooks that align with kernel eBPF standards and integrating eBPF with WebAssembly... Read More →
avatar for Richard Simon

Richard Simon

CTO, T-Systems International
Richard has 34 years of IT industry experience. He has been working in Cloud Computing for 15 years. He's done various roles (Systems Engineer, Senior Kubernetes Architect, Principal Consultant and now CTO). He's worked for a number of prestigious IT vendors and service providers... Read More →
Monday September 16, 2024 14:15 - 14:55 CEST
Room 0.11-0.12 (Level 0)
  CloudOpen

14:15 CEST

Cross Industry Demands and Collaboration Opportunities in Open Source for Safety Critical Systems - Philipp Ahmann, Robert Bosch GmbH & Olivier Charrier, Wind River
Monday September 16, 2024 14:15 - 14:55 CEST
The increasing computation power of embedded CPUs has revolutionized industries such as Automotive, Aerospace, or Industrial by enabling centralized and enhanced use cases, software-defined functionalities, and increased automation. The challenges of this increased complexity are often addressed by incorporating Open Source Software, particularly Linux, virtualization and RTOS. As these industries are heavily regulated by quality and safety-integrity standards, the certification of these highly complex systems becomes crucial.

Starting from the similarities and overlaps in system architecture design across use cases, this talk will explore the demands imposed by safety integrity standards in various industries. To develop these systems and adhere to required processes, the integration of tools and a high degree of automation is essential.

The authors show how Open Source projects bridge the gap between open source and safety-criticality, introducing tools and processes, and showcasing collaborative efforts in creating reproducible example system architectures. These systems can serve as a foundation for companies and projects adopting Open Source in safety-critical applications.
Speakers
avatar for Philipp Ahmann

Philipp Ahmann

Sr. OSS Community Manager, Etas GmbH (BOSCH)
Philipp Ahmann is a senior OSS community manager at Etas GmbH (BOSCH) specializing in safety and automotive grade open source software. He holds the position of technical steering committee chair for the Linux Foundation (LF) ELISA project to Enable Linux in Safety Applications and... Read More →
avatar for Olivier Charrier

Olivier Charrier

Principal Technologist - Functional Safety, Wind River
Olivier Charrier obtained a Master’s degree in Software Engineering (DESS) from Bordeaux University in 1989.After working for Alsys/Aonix on Ada development environment for embedded systems, Olivier joined Wind River in June 2001 where his focus is to help Wind River's customers... Read More →
Monday September 16, 2024 14:15 - 14:55 CEST
Room 2.15 (Level 2)
  Critical Software Summit

14:15 CEST

Real-time Scheduling Fault Simulation - Ben Dooks, Codethink
Monday September 16, 2024 14:15 - 14:55 CEST
There is a lot of work around how to achieve good real-time on Linux, but not as much on how to simulate faults such as jitter in the system, deadline misses or other faults. Without this it is difficult to test how your application or entire system copes with these problems.

As part of work with a number of clients, especially in the safety sphere, questions have come up on how to test processes which rely on real-time scheduling. If we have a way of injecting faults we can reliably test error handling and other mitigations. Mitigations such as throttling, restarting or some measured shutdown of services.

We will go through some methods we evaluated for fault injection via both user and kernel space. How existing kernel features can be used and what needs to be done in the way of either configuring or extending kernel features. There will be discussion about how each method works and the comparative merits where overlaps exist.

We hope that this can help to promote thinking and improvements on how the scheduler and particularly real-time scheduling is tested under Linux.
Speakers
avatar for Ben Dooks

Ben Dooks

Senior Engineer, Codethink, Codethink
Senior open source consultant at Codethink and long-time contributor to various projects such as the Linux Kernel.
Monday September 16, 2024 14:15 - 14:55 CEST
Hall M1 (Level 1)
  LinuxCon

14:25 CEST

Lightning Talk: Optimizing Kubernetes Multicluster Backup & Restore - Hường Đinh, Viettel Solutions
Monday September 16, 2024 14:25 - 14:35 CEST
In this presentation, I aim to address critical challenges in Kubernetes cluster management, particularly focusing on optimizing multicluster backup and restore processes using Velero. The current state of Kubernetes cluster management emphasizes the critical importance of implementing robust backup and restore processes. However, a challenge arises when dealing with multiple clusters, requiring the installation of Velero on each cluster, resulting in complex and resource-intensive multicluster Kubernetes environments. To address this issue, the proposed solution advocates for a centralized Velero installation, allowing for the backup and restore of individual clusters using their corresponding kubeconfig. The talk delves into the design architecture of multicluster backups, outlining how to integrate this approach with Velero's existing features. This innovative approach not only simplifies management but also optimizes resource utilization in a way that aligns with the evolving landscape of Kubernetes cluster operations. I aim for the audience to leave with actionable insights and a clear roadmap for implementing centralized backup strategies in their own multicluster setups.
Speakers
avatar for Hường Đinh

Hường Đinh

Cloud Engineer, Viettel Solutions
Cloud Solution Engineer
Monday September 16, 2024 14:25 - 14:35 CEST
Room 0.14 (Level 0)
  ContainerCon

15:25 CEST

How to Make Your Kubernetes Add-Ons Management Painless in Multi Cloud - Eleni Grosdouli & Gianluca Mardente, Cisco Systems
Monday September 16, 2024 15:25 - 16:05 CEST
One of the most powerful aspects of Kubernetes is its extensibility. But with flexibility comes complexity. Deploying Kubernetes add-ons extend its functionality, but with most platform engineers managing and maintaining multiple clusters across different environments comes the pain. Giving a breather to platform administrators will allow them to be more productive and creative, while enabling them to perform deployments easily, quickly and reliably. From a small home lab to large-scale production environments, keeping up with Kubernetes add-ons deployment and management in a consistent, reliable, and maintainable manner can be like trying to find Nemo on the CNCF landscape. In this engaging session, we will demonstrate: - How smoothly Flux synchronises Kubernetes resources - How to use different add-on formats, including Helm charts, raw YAML/JSON highlighting the Lua language template creation for advanced deployments and logical application - How to deploy Cilium as a CNI - How to deploy Kyverno policies to clusters based on their scope as templates Attendees will learn a new, easy and creative way of deploying applications whether on-prem or in the cloud.
Speakers
avatar for Gianluca Mardente

Gianluca Mardente

Principal Engineer, Cisco Systems
A passionate advocate for automation in Kubernetes environments, Gianluca brings a lot of experience to his role as a Principal Engineer at Cisco Systems. He contributes to the open-source community by actively maintaining Projectsveltos, a set of Kubernetes controllers that simplify... Read More →
avatar for Eleni Grosdouli

Eleni Grosdouli

DevOps Consulting Engineer, Cisco Systems
The go-to person for DevOps and GitOps approaches, with a passion for networking, security, endpoint management, and endpoint security, Eleni brings diversity of experiences to her role as a DevOps Consulting Engineer at Cisco Systems. Always eager to learn, she enjoys trying out... Read More →
Monday September 16, 2024 15:25 - 16:05 CEST
Room 0.11-0.12 (Level 0)
  CloudOpen

15:25 CEST

Bringing Existing Open-Source Code into MISRA Compliance - Roberto Bagnara, University of Parma and BUGSENG
Monday September 16, 2024 15:25 - 16:05 CEST
Bringing an existing codebase into MISRA compliance is known to be a difficult, risky and time-consuming task. Yet, when a product needs a functional safety certification and rewriting the software is out of question, this is a necessity. Such an endeavor requires facing multiple tradeoffs and, consequently, lots of experience both on the codebase and on MISRA. The choices between deviating the guideline, and the (often, many) ways in which code may be changed and deviations may be formulated, are tough and with consequences that are not immediately evident. The situation is particularly interesting in the case of open-source software, where additional challenges have to be faced. In this presentation, we illustrate our experience and the several lessons learned while undertaking MISRA compliance work in open-source projects, most notably the Zephyr RTOS and the Xen hypervisor, both used in many embedded systems. Key take-home points include: effective deviation strategies and mechanisms; dealing with the MISRA C essential type model (guidelines related to that account for many of the violations in existing codebases); interaction with open-source communities.
Speakers
avatar for Roberto Bagnara

Roberto Bagnara

Professor, University of Parma and BUGSENG
Roberto Bagnara is professor of Computer Science at the University of Parma and Software Verification Expert and Evangelist at BUGSENG. He coauthored more than 40 papers, in international journals and conference proceedings, on programming languages, static analysis and other techniques... Read More →
Monday September 16, 2024 15:25 - 16:05 CEST
Room 2.15 (Level 2)
  Critical Software Summit

15:25 CEST

From Hardware to Linux - Stefan Eichenberger, embear GmbH
Monday September 16, 2024 15:25 - 16:05 CEST
This presentation will show a step-by-step guide from hardware design to a fully functional Linux system. Initial considerations in the hardware design phase will help simplify the bringup. This includes designing for testability and incorporating features that make debugging easier, such as having accessible test points and providing instrumentation, such as a serial console and a JTAG interface. The next phase involves the bootloader, which is the first software component to run on the system. At this stage, we can use JTAG for early debugging to get some text output and eventually a console. The transition to the Linux kernel involves strategies that may include using JTAG again for early kernel debugging, followed by using printk and KDB for later diagnostics. The final phase involves the root file system and userspace tools that help bring up the rest of the peripherals. This final section of the presentation shows some userspace diagnostic and debugging tools for successfully getting a Linux-based system up and running.
Speakers
avatar for Stefan Eichenberger

Stefan Eichenberger

Embedded Software Engineer, embear GmbH
I started my career 20 years ago with an apprenticeship as an electronics technician. I was always fascinated by embedded software, which led me to study electrical engineering and computer science. Since then I have been working as an embedded software engineer using embedded Linux... Read More →
Monday September 16, 2024 15:25 - 16:05 CEST
Hall C (Level 2)
  Embedded Linux Conference

15:25 CEST

Exploration of Compliance Governance Based on Operating Systems - Zheng Zhenyu, Huawei & Liu Yanfei, OpenAtom Foundation
Monday September 16, 2024 15:25 - 16:05 CEST
Open source compliance management occupies an important position in enterprise open source management, but for operating systems, the scenarios that require compliance management are complex and numerous, and management is difficult, but it is still a task that we have to face.This topic focuses on enterprise open source compliance management, starting from the overall development process of the operating system, explains in detail a variety of development scenarios, analyzes the pain points and difficulties of compliance management in different scenarios, and gives some thoughts and suggestions on compliance management.
Speakers
LY

Liu Yanfei

OpenAtom Foundation
avatar for Zheng Zhenyu

Zheng Zhenyu

openEuler Community Operations Manager, Huawei Technologies
8+ years of experience in open source development and management, contributed to projects like OpenStack, Libvirt, Hadoop, etc. Started to work on openEuler since 2019, currently work as community manager for openEuler community.
Monday September 16, 2024 15:25 - 16:05 CEST
Room 0.49-0.50 (Level 0)
  Operations Management Summit

16:20 CEST

Fine-Grained Policies RBAC with OpenFGA - José Carlos Chávez, Okta
Monday September 16, 2024 16:20 - 17:00 CEST
The fine-grained nature of cloud native deployments requires fine-grained authorization at each component. However, this may require security policies to be centrally defined and the configurations reflecting them to be defined in each microservice to enable uniform, consistent enforcement across the entire system which is hard to model and maintain. OpenFGA is an open source solution to Fine-Grained Authorization that applies the concept of Relationship-based access control (ReBAC) where a subject's permission to access a resource is defined by the presence of relationships between those subjects and resources. It was designed for reliability and low latency at a high scale. This talk will offer an overview of OpenFGA, ReBAC and its advantages over more traditional RBAC and ABAC in the context of Zero Trust.
Speakers
avatar for José Carlos Chávez

José Carlos Chávez

Security Software Engineer, Okta
José Carlos Chávez is a Security Software Engineer at Okta, an OWASP Coraza co-leader and a Mathematics student at the University of Barcelona. He enjoys working in Security & Compliance, compiling to WASM, designing APIs and building distributed systems. While not working with... Read More →
Monday September 16, 2024 16:20 - 17:00 CEST
Room 0.11-0.12 (Level 0)
  CloudOpen

16:20 CEST

Hidden in Plain Sight: Corner Case Defects - Robert Altnoeder, LINBIT HA-Solutions GmbH
Monday September 16, 2024 16:20 - 17:00 CEST
This session is about often unexpected and sometimes intricate defects that may either occur infrequently, seemingly randomly, or only in very specific corner cases.

These defects are often overlooked by developers, and most tests may not discover them either, despite how widespread they are, often lurking in plain sight, waiting to strike at the most unfortunate moment.
In this session, we will take a look at some code examples, we will talk about the sometimes surprising ways in which things can go wrong, and about how to avoid repeating the same mistakes.
Speakers
avatar for Robert Altnoeder

Robert Altnoeder

Developer, former RCA team member, LINBIT HA-Solutions GmbH
Robert has worked in the IT industry for almost 20 years in various roles, including as a root cause analysis specialist for a big international IT company. The subjects of code correctness and robustness are one of this main areas of interest, and the focus of a significant portion... Read More →
Monday September 16, 2024 16:20 - 17:00 CEST
Room 2.15 (Level 2)
  Critical Software Summit
  • Audience Level Intermediate
  • Presentation Slides Attached Yes
  • about Robert has worked in the IT industry for almost 20 years in various roles, including as a root cause analysis specialist for a big international IT company. The subjects of code correctness and robustness are one of this main areas of interest, and the focus of a significant portion of his own software development projects. He currently works as a software developer and consultant for LINBIT HA-Solutions GmbH in Austria.

16:20 CEST

Embedded Audio Policies Made Easy with WirePlumber - George Kiagiadakis, Collabora
Monday September 16, 2024 16:20 - 17:00 CEST
Building robust audio policies on embedded systems that integrate well with upstream APIs and components such as PipeWire and PulseAudio has been a challenging task for a long time. In many implementations, custom hardware DSP management components are built, bypassing existing upstream functionality, making integration and maintenance harder than they need to be. In this talk, George will explain how many of these difficulties can be overcome by integrating management directly into WirePlumber, the default session manager of PipeWire, and how existing functionality can be factored in to build complex solutions with ease. Emphasis will be given also on how recent developments in WirePlumber have improved this particular use case.
Speakers
avatar for George Kiagiadakis

George Kiagiadakis

Principal Software Engineer, Collabora
George Kiagiadakis is a principal software engineer at Collabora, with over 14 years of experience in open source and embedded multimedia projects in particular. He is the author and maintainer of WirePlumber, a modular session manager for PipeWire, and has worked extensively with... Read More →
Monday September 16, 2024 16:20 - 17:00 CEST
Hall B (Level 2)
  Embedded Linux Conference

16:20 CEST

Practical Application of Verified Boot - Rouven Czerwinski, Pengutronix e.K.
Monday September 16, 2024 16:20 - 17:00 CEST
More and more applications of embedded linux systems require them to ensure that only trusted software is started on the device. This means that verified boot procedures need to be employed to verify the software running on the device. This talk will highlight the necesssary components to cryptographically verify the bootloader, kernel and filesystem. It will also show how these components can be integrated using the OpenEmbedded build system. Bootloader verification will be covered by providing examples to use the signing.bbclass in Yocto in conjunction with the NXP CST tool to sign a bootloader, kernel verification is covered by a to be upstreamed fitimage class and filesystem verification will be shown with a dm-verity class example for Yocto. Additionally the talk will highlight common pitfalls when deploying locked down embedded systems encountered during project work. We will also cover the case of using GPLv3 licenses on locked down devices.
Speakers
avatar for Rouven Czerwinski

Rouven Czerwinski

Embedded Linux Developer, Pengutronix e.K.
At first building the labgrid hardware access layer, rouven nowadays works on security solutions for embedded devices.
Monday September 16, 2024 16:20 - 17:00 CEST
Hall C (Level 2)
  Embedded Linux Conference

16:20 CEST

What Makes a Good, or Bad, Open Source Experience?! - Ildiko Vancsa, Open Infrastructure Foundation & Philip Robb, Ericssson Software Technology
Monday September 16, 2024 16:20 - 17:00 CEST
Open source means a lot of things to a lot of people. That may be why it’s one of the most misunderstood and misused terms in tech and related ecosystems. In fact, if you ask ten different people in tech “what is open-source?”, you are likely to get ten very different answers. We know, we’ve done it! So what makes a “good” or “bad” experience for users and participants in open-source projects? Ildiko and Phil have set out to answer this question with their “My Open Source Experience” podcast. They are talking to seasoned professionals and newbies, to understand the challenges and successes they’ve experienced so far. Questions they ask include: Was it the code, the community, or the person's employer that made their experience better or worse? How did people navigate difficulties? What are “best practices” to achieve “success” however that is defined for individuals, their organization, and/or their community? In this talk Ildiko and Phil share some of the most interesting take-aways from their conversations with podcast guests as well as from their own open source journeys, and invite the audience to join the conversation and share their experiences.
Speakers
avatar for Phil Robb

Phil Robb

President, Ericssson Software Technology
Phil is the Head of Ericsson Software Technology (EST), where he leads a passionate group of engineers developing open source software across a wide range of projects. Prior to Ericsson, Phil was the V.P. of Operations for the Networking Projects at the Linux Foundation for six years... Read More →
avatar for Ildiko Vancsa

Ildiko Vancsa

Director of Community, Open Infrastructure Foundation
Ildikó is working for the Open Infrastructure Foundation as Director of Community. As part of her role, she is the Community Manager for StarlingX and Kata Containers, and a co-leader of the OpenInfra Edge Computing Group. Ildikó has been contributing to projects like OpenStack... Read More →
Monday September 16, 2024 16:20 - 17:00 CEST
Room 0.94-0.95 (Level 0)

16:20 CEST

Open Source Compliance Management - Removing the Thorn from Your Company's Side - Eleftheria Stefanaki, Nokia Technologies & Jimmy Ahlberg, Ericsson
Monday September 16, 2024 16:20 - 17:00 CEST
This session covers two major topics: Firstly, the significance of an open source management system in the context of IP management for heavily software-dependent companies. Managing open source dependencies is a key pain-point, since so much of modern software development depends on it. Yet only a small number of people truly understand open source beyond “just the code”. Although a company's heavily intellectual property (IP)-involved departments deal with IP management everyday, they are oblivious to open source software. This talk suggests ways to translate the ‘open source talk’ and make these departments your comrades in arms. Secondly, the speakers introduce the OpenChain Specification 2.1 (ISO/IEC 5230:2020) on open source license compliance, aka a framework and a blueprint for how to translate open source management into IP management. This session gives you the tools to turn the view of open source from a potential liability to a valuable asset. The speakers pull from their experience working in IP heavy weights such as Ericsson (more than 60.000 granted patents globally) to put the above into context and give example of Ericsson’s ongoing journey in this area.
Speakers
avatar for Jimmy Ahlberg

Jimmy Ahlberg

Director Open Source Policy, Ericsson
Currently Mr Ahlberg is the Director of Open Source Policy with the Ericsson OSPO. Prior to the inception of the Ericsson OSPO he worked in different roles with various aspects of Open Source in the Ericsson organization, This included consumption of and contribution to Open Source... Read More →
avatar for Eleftheria Stefanaki

Eleftheria Stefanaki

FOSS Legal Counsel, Nokia Technologies
I am a lawyer from Greece, specialized in technology and passionate about open source. I started my 'open source journey' in 2022, assisting and participating in the activities and day-to-day of the OSPO in Ericsson. Today, I continue this journey as a FOSS legal counsel in Nokia... Read More →
Monday September 16, 2024 16:20 - 17:00 CEST
Room 0.49-0.50 (Level 0)
  Operations Management Summit
 
  • Filter By Date
  • Filter By Venue
  • Filter By Type
  • Audience Level
  • Presentation Slides Attached
  • Timezone

Share Modal

Share this link via

Or copy link

Filter sessions
Apply filters to sessions.
Filtered by Date -