Open Source Summit Europe 2024: Full Schedule

September 16-18, 2024
Vienna, Austria
View More Details & Registration
Note: The schedule is subject to change.

The Sched app allows you to build your schedule but is not a substitute for your event registration. You must be registered for Open Source Summit Europe 2024 to participate in the sessions. If you have not registered but would like to join us, please go to the event registration page to purchase a registration.

This schedule is automatically displayed in Central European Summer Time (UTC/GMT +2). To see the schedule in your preferred timezone, please select from the drop-down menu to the right, above "Filter by Date."

IMPORTANT NOTE: Timing of sessions and room locations are subject to change.

11:20 CEST

Application of the Upcoming SPDX Safety Profile - Nicole Pappler, AlektoMetis.com

Monday September 16, 2024 11:20 - 12:00 CEST

Room 0.96-0.97 (Level 0)

Creating and maintaining a safety critical project comes with a lot of challenges. A central issue is keeping your documentation, starting from planning and guideline documents, down to requirements, safety analysis, reviews and tests, consistent and up to date. These artefacts often have their own lifecycle and are natively managed in different tools, with usually great traceability capabilities regarding dependencies between these artefacts as long as you stay within one tool or within a (usually propriety) tool family of one single tool vendor. Currently the resulting traceability gaps between these tools are handled either by the popular engineering tools like MS Excel or methods like “search for identical names”, depending highly on manual maintenance.

Using SPDX relationships, the upcoming Safety Profile in SPDX 3.1 will provide a model to represent all these dependencies as a knowledge model that can be used both to analyse possible impacts after a change (be it because of a security update or functional variants of your product), provide evidence of completeness and compliance as a Safety SBOM or simply keep track of your product variants.

Speakers

Nicole Pappler

Senior Safety Expert, AlektoMetis

Nicole has worked in different projects developing safety relevant embedded software before starting as an independent assessor. With now more than twenty years of experience in the industry, she supported several customers to show their compliance with safety, security and quality... Read More →

Monday September 16, 2024 11:20 - 12:00 CEST
Room 0.96-0.97 (Level 0)

Critical Software Summit

Audience Level Any

11:20 CEST

How to Enable Android (AOSP) on Your Developer Board - Mattijs Korpershoek, BayLibre

Monday September 16, 2024 11:20 - 12:00 CEST

Room 0.14 (Level 0)

Most embedded development boards can run Linux from traditional distros like Debian to custom Yocto systems. But have you ever wondered what it would take to run Android Open Source Project (AOSP) on these developer boards? Well, wonder no more. This talk will walk you through it. Using a ARM based Texas Instruments evaluation board as example, we will start from TI's Yocto SDK then download AOSP and study all the changes needed in order to boot to the Android home screen. We will cover: - Bootloader (U-Boot) modifications required for Android boot flow - Linux kernel versus Android Common Kernel (ACK) - User space changes - Android's build system - Additional changes to add more advanced features

Speakers

Mattijs Korpershoek

Software engineer, BayLibre

Mattijs works on embedded Android systems since Kitkat (2014). He started at Intel on various smartwatches running Android Wear. Wanting to contribute to open-source projects, he joined BayLibre in 2020. Since then, he and his colleagues have been bringing up Android on various boards... Read More →

Monday September 16, 2024 11:20 - 12:00 CEST
Room 0.14 (Level 0)

Embedded Linux Conference

Audience Level Any

11:20 CEST

Introduction to Linux Kernel Debugging and Code Coverage Using KCOV - Priya Dixit, Samsung Semiconductor Research India

Monday September 16, 2024 11:20 - 12:00 CEST

Room 0.49 - 0.50 (Level 0)

When we write kernel code, testing it thoroughly by giving different input combinations to check all the vulnerabilities and code coverage is important. Also, running buggy code directly on the hardware board has the potential to break the device. The presentation covers building and running a KCOV-enabled kernel in a virtualized environment for runtime detection of error conditions and checking code coverage using the same. To develop a deeper understanding, we will inject faults from user space via debugfs and catch the same by fuzzing the Linux kernel. Further debugging will be shown by using the GCC utilities like addr2line, objdump, etc.

Speakers

Priya Dixit

Staff Engineer, Samsung Semiconductor Research India

I am a Linux-embedded engineer with around nine years of experience in the domain. I have worked on various projects involving interrupt subsystem, coresight, kernel tracing, and testing infrastructure. I am passionate about learning new technologies and sharing my knowledge with... Read More →

Monday September 16, 2024 11:20 - 12:00 CEST
Room 0.49 - 0.50 (Level 0)

LinuxCon

Audience Level Any

11:20 CEST

Panel Discussion: What's the State of Open Source in Europe? Key Research Findings Revealed! - Mirko Boehm, Anna Hermansen, Adrienn Lawson & Cailean Osborne, The Linux Foundation

Monday September 16, 2024 11:20 - 12:00 CEST

Hall C (Level 2)

The "Key Findings from the World of Open Source: Europe Spotlight" panel will present and discuss the latest trends in the OSS landscape in Europe. The discussion will kick off with the presentation of novel findings from the "World of Open Source: Europe Spotlight" report, highlighting the need for openness in AI, the significance of OSS security, and the role of OSS as digital public goods. Anna Hermansen and Adrienn Lawson from LF Research will present the most salient quantitative insights from the Linux Foundation's annual World of OSS survey, segmented for Europe, then Mirko Boehm and Cailean Osborne from LF Europe will share qualitative insights from expert interviews. The findings provide a multifaceted understanding of the European open-source ecosystem and its future potential. A community expert will join the panel to provide an additional perspective on the findings. Attendees are encouraged to participate in this engaging discussion about the major trends shaping the OSS landscape in Europe. The panel will offer valuable insights for developers, businesses, and policy makers alike, and provide a forum for exchanging ideas on the future of OSS in Europe.

Speakers

Cailean Osborne

Researcher, Linux Foundation

Cailean is a Researcher at the Linux Foundation and a PhD Candidate in Social Data Science at the Oxford Internet Institute, University of Oxford. His interests are in OSS, the digital commons, and public interest computing. Previously, Cailean worked as the International Policy Lead... Read More →

Anna Hermansen

Researcher and Ecosystem Manager, LF Research, The Linux Foundation

Anna is the Ecosystem Manager and a Researcher for LF Research where she supports end-to-end management of the department's research projects. She has conducted qualitative and systematic review research on the integration of technologies to better support health data sharing. Her... Read More →

Mirko Boehm

Community Development, Linux Foundation Europe, The Linux Foundation

Mirko Boehm is a free and open source software contributor, community manager, licensing expert and researcher, with contributions to major open source projects like the KDE Desktop, the Open Invention Network, the Open Source Initiative and others. He is a visiting lecturer and researcher... Read More →

Adrienn Lawson

Data Analyst, Linux Foundation

Adrienn is a data analyst at the Linux Foundation. Adrienn obtained a Master’s degree from the University of Oxford in Social Data Science. She supports LF Research with survey development, analysis, and report writing. Adrienn has previously conducted research at the University... Read More →

Monday September 16, 2024 11:20 - 12:00 CEST
Hall C (Level 2)

Open Source Leadership Summit

Audience Level Any

12:15 CEST

Traceability and Automation Examples With Basil an Open Source Software for Quality Management - Luigi Pellecchia & Gabriele Paoloni, Red Hat

Monday September 16, 2024 12:15 - 12:35 CEST

Room 0.96-0.97 (Level 0)

In Safety Critical applications it is mandatory to ensure Sw Requirements traceability to Sw Specifications, Test Cases, Test Results, Bugs and more.
The process leading to this goal is usually complex and time-consuming and it is essential to understand the state step by step and highlight what remains to be done.
Moreover, for the intrinsic nature of a software project, we need to ensure traceability and test verification following any evolution in the ecosystem of the project.

BASIL The FuSa Spice, is an open source sw that provides a quality management solution aimed to address the above mentioned challenges for SW developments that are code driven and equally for the ones requirements driven.

We will see how to implement in BASIL Sw Requirements traceability to the source Code and to existing upstream Test Cases, how to execute them, how to navigate Test Results and artifacts and how to link failures to a bug in a bug tracking system.

We will also go into the details of a pipeline implementation based on the BASIL HTTP Api to understand how changes in one or more work items can be managed through automation with the goal of implementing a continuous certification framework.

Speakers

Gabriele Paoloni

Sr SW Principal Engineer, Red Hat

Gabriele Paoloni is an Open Source Community Technical Leader at Red Hat. He is a passionate technologist and has strong experience in both functional safety and Linux Kernel development, including previous roles leading FuSa software architecture for Intel platforms, CCIX vice chairman... Read More →

Luigi Pellecchia

Senior Software Quality Engineer, Red Hat

Luigi Pellecchia is a Principal Sw Quality Engineer at Red Hat.He is a Mechanical Engineer with a solid background in sw development.He gained a strong experience as automotive sw tester reaching the role of Sw Validation Project Leader working on ECUs ISO 26262 compliant that are... Read More →

Monday September 16, 2024 12:15 - 12:35 CEST
Room 0.96-0.97 (Level 0)

Critical Software Summit

Audience Level Any

12:15 CEST

How to Build Your Own High-Performance Charger with EVerest - Andreas Heinrich & Kai-Uwe Hermann, Pionix GmbH

Monday September 16, 2024 12:15 - 12:55 CEST

Room 0.11-0.12 (Level 0)

In this talk we will give you a comprehensive overview of the complex task of building a high-performance DC vehicle charging station. We will show you how the EVerest project addresses a diverse set of challenges across all areas of the required software stack. EVerest abstracts away the complexities of reliably communicating with vehicles of all makes and models to enable successful charging sessions with robust implementations of the relevant communication protocols, such as ISO 15118-2/20 and DIN 70121 including Plug & Charge. Communication with backend systems of different providers can be achieved through the OCPP 2.0.1 and 1.6 standards. We will also explain how error handling and reporting are managed in a system running a diverse set of EVerest modules. Additionally we will discuss our strategy for generating comprehensive documentation for a project that spans multiple actively developed repositories. EVerest is an Apache 2.0 licensed project within LF Energy. It was initiated by PIONIX GmbH to support the electrification of the mobility sector.

Speakers

Kai-Uwe Hermann

Principal Engineer, Pionix GmbH

Kai-Uwe Hermann studied computer science at the Karlsruhe Institute of Technology and worked as a researcher in a robotics and autonomous driving group. Since 2021 he works as a Principal Engineer at PIONIX and is one of the driving forces behind the LF Energy Project EVerest

Andreas Heinrich

Andreas Heinrich, PIONIX GmbH

Andreas Heinrich started coding with LEGO Mindstorms as a kid. He joined PIONIX in 2021 and works on software for EV charging. His bachelor's thesis focused on energy management and optimizing photovoltaic self-consumption. He enjoys working on projects that make a positive impac... Read More →

Monday September 16, 2024 12:15 - 12:55 CEST
Room 0.11-0.12 (Level 0)

Embedded Linux Conference

Audience Level Any

12:15 CEST

Getting Linux Distros to New Architectures - Bernhard Rosenkränzer, Baylibre

Monday September 16, 2024 12:15 - 12:55 CEST

Room 0.49 - 0.50 (Level 0)

Once in a while, new processor architectures show up -- aarch64, RISC-V, Loongarch, Elbrus -- and more to come. Getting Linux distributions - especially those using binary packages - up on them has traditionally been difficult, but it doesn't have to be. For the new OpenMandriva RISC-V port, we have automated the process in a way that will also work for other new architectures (or even other core changes like spins using a different libc). This talk introduces the pitfalls and the Open Source tools we've used to overcome them.

Speakers

Bernhard

Linux/Open Source consultant, Baylibre

Bernhard "bero" Rosenkränzer has been a Linux developer ever since he became curious about a stack of 84 floppy disks in the first half of the 1990s. Some of his code can be found in anything from the Linux kernel to the KDE Plasma user interface. Before joining BayLibre, he has... Read More →

Monday September 16, 2024 12:15 - 12:55 CEST
Room 0.49 - 0.50 (Level 0)

LinuxCon

Audience Level Any

12:35 CEST

Promoting Group Wide Open Source Activity Within Sony by Identifying Common Key Open Source Project - Kazumi Sato & Masayuki Kuwata, Sony Group Corporation

Monday September 16, 2024 12:35 - 12:55 CEST

Room 0.94-0.95 (Level 0)

In this presentation, we present how an analysis of companies and technical trends can lead to the formation of group-wide community and participation in open source alliance organizations. We analyzed companies and technological trends in the related technology area to clarify the situation around the company direction from top-level executives. As a result, we identified important foundations and open source projects in which companies in the related technology area were actively involved. These projects are also important for the Sony Group business. However, due to the diverse nature of Sony's business entities, the organization responsible for video production was unaware of the significance within Sony group, even though they were aware of the trends in OSS and the importance for their own business. In contrast, the organization in the electronics field lacked awareness of video production trends. We tailored the analysis results to each organization and communicated them accordingly. This explanation led to valuable insights for each tech executive, resulting in the formation of group-wide community and participation in a related alliance organization.

Speakers

Kazumi SATO

Senior Principal Engineer, Distinguished Engineer, Sony Group Corporation

Kazumi SATO is a Distinguished Engineer in Sony. He has been working on Linux-based system software for various Sony products. He also has been working on OSS compliance and relationship with communities in Sony Group. Since 2002, when Sony started to use Linux, he has been leading... Read More →

Masayuki KUWATA

Senior Manager, Sony Group Corporation

He is the OSPO leader of Sony Group Corporation. Since 2022 April, he has started his career in OSPO. Before that, he worked on development of embedded software for camcorders and cameras. He works on leading the open source strategy with business unit. He is an organizer of Japan... Read More →

Monday September 16, 2024 12:35 - 12:55 CEST
Room 0.94-0.95 (Level 0)

Operations Management Summit

Audience Level Any

13:20 CEST

ELinux Wiki BOF - Tim Bird, Sony Electronics

Monday September 16, 2024 13:20 - 14:00 CEST

Room 0.11-0.12 (Level 0)

In this session, the status of the elinux wiki will be discussed, along with ideas for expanding and updating the content for the site. The elinux wiki has served as a resource for embedded Linux developers for almost 18 years. The wiki contains a lot of great material, including slides and videos for almost every embedded Linux Conference. In this session, Tim will discuss the wiki, and we'll brainstorm ideas for rejuvenating the site, and utilizing it as an effective community resource. Rewards will be available if you make an edit to the wiki during the BOF!! Let's work together to improve this valuable resource!

Speakers

Tim Bird

Principal Software Engineer, Sony Electronics

Tim Bird is a Principal Software Engineer for Sony Corporation, where he helps Sony use Linux and other open source software in their products. Tim is the maintainer of the Fuego test framework, and is involved with various Linux Foundation projects (including being a member of the... Read More →

Monday September 16, 2024 13:20 - 14:00 CEST
Room 0.11-0.12 (Level 0)

Embedded Linux Conference

Audience Level Any

14:15 CEST

What's Happening in Japan? - the Current Situation of SBOM - Ayumi Watanabe, Hitachi Solutions, Ltd.

Monday September 16, 2024 14:15 - 14:35 CEST

Room 0.94-0.95 (Level 0)

Three years have passed since the issuance of the U.S. Executive Order (EO #14028), the adoption of SBOM in Japan has gradually progressed. Japanese companies are learning the minimum elements of SBOM which was published by NTIA, and are converting to a development process that takes automated SBOM generation into account. In July 2023, the Ministry of Economy, Trade, and Industry (METI) published a guide on the introduction of SBOM for software management, then the second version is scheduled to be released this summer. In addition, in April 2024, Nikkei Computer, a prominent Japanese computer magazine, published a less than 20-page special feature on SBOM in its opening issue. In this session, Ayumi Watanabe, a Japanese SBOM evangelist and an advisor to METI's SBOM PoC project, will discuss the status of SBOM in Japan, including the content of METI's guidelines, and the maturity and challenges of SBOM implementation in Japanese companies.

Speakers

Ayumi Watanabe

Senior OSS Specialist, Hitachi Solutions, Ltd.

Ayumi Watanabe is a Senior OSS Specialist of Hitachi Solutions, Ltd.. She is also a core member of OpenChain Japan and known as a SBOM evangelist. Her strong point is a knowledge of many tools for SBOM generation and management, a wide range of experiences as an OSS management consultant... Read More →

Monday September 16, 2024 14:15 - 14:35 CEST
Room 0.94-0.95 (Level 0)

Operations Management Summit

Audience Level Any

14:15 CEST

Why Both Open Source and Africa's Future Successes Are Intertwined - Peace Ojemeh, Open Source Community Africa & Ruth Ikegah, CHAOSS

Monday September 16, 2024 14:15 - 14:55 CEST

Hall M1 (Level 1)

Over the past 6 years, the African tech ecosystem has seen significant interest and participation in global open source projects through communities like Open Source Community Africa and Python groups. According to the GitHub 2023 Octoverse report, Nigeria is a hot spot for OSS adoption and technological advancement with a 45% year-over-year growth rate. This talk will explore the importance of Open Source in Africa's development and success. We will discuss Africa's current state, its challenges, and how Open Source can be used as a tool for development, innovation, and collaboration. Through success stories and real-world examples, we will highlight the impact of Open Source on Africa's development and the opportunities it presents for the future.

Speakers

Peace Ojemeh (Perrie)

Core team, Open Source Community Africa

Perrie is a designer, ecosystem researcher, strategist, and a strong advocate for Open Source. They currently work at the Ethereum Foundation, as an ecosystem developer. Perrie is also a founding member of Open Source Community Africa With a strong commitment to promoting diversity... Read More →

Ruth Ikegah

Community and Programs Manager, CHAOSS

Ruth Ikegah is a Backend Developer, Technical Writer, and GitHub Star. She is sparked about making the onboarding process scalable in teams.

Monday September 16, 2024 14:15 - 14:55 CEST
Hall M1 (Level 1)

Diversity Empowerment Summit

Audience Level Any

14:15 CEST

Why Quantum Safe Encryption Is the Next Y2K, and How to Be Prepared - Joe Winchester & Louisa Seers, IBM

Monday September 16, 2024 14:15 - 14:55 CEST

Room 2.31 (Level 2)

Client server computing relies on encryption algorithms to ensure that data sent across networks cannot be read, or faked, by untrusted parties. This is the rock on which financial computing works in a business to customer environment, as well as how data at rest is protected from malicious prying eyes reading our personal data. This talk will cover the basics of how Diffe-Hellman encryption works, how symmetric and asymetric keys operate, as well as how all of this will soon become unsafe because of quantum computing. As well as showing the audience the basics (no maths degree required) this talk will show how quantum safe encryption is able to address this, and how folks can get wise and get started.

Speakers

Louisa Seers

Product Manager, IBM

Louisa’s an experienced professional within IBM with 10 years’ spanning diverse roles across consulting, software development and acquisitions. In addition, Louisa has just finished a Degree Apprenticeship to support her role in business leadership. Louisa is the chairperson of... Read More →

Joe Winchester

Senior Technical Staff Member, IBM

I work on open source projects around software tooling platforms. My current project is Zowe, which is part of the Linux Foundation and Open Mainframe Project where I am part of the leadership committee and an ambassador. Prior to Zowe I worked on Eclipse tooling and before that Java... Read More →

Monday September 16, 2024 14:15 - 14:55 CEST
Room 2.31 (Level 2)

Open Source 101

Audience Level Any

14:35 CEST

SBOM Open Questions - Alexios Zavras, Intel

Monday September 16, 2024 14:35 - 14:55 CEST

Room 0.94-0.95 (Level 0)

As the complexity of software ecosystems continues to grow, the need for transparency and security in software components becomes increasingly critical. Software Bill of Materials (SBOMs) has emerged as a pivotal tool in understanding and managing software dependencies, vulnerabilities, and compliance. However, despite its growing adoption, several open questions remain regarding the creation, distribution, and practical use of SBOMs. This presentation aims to pose these questions and discuss the challenges faced by the industry.

Speakers

Alexios Zavras

Chief Open Source Compliance Officer, Intel

Alexios Zavras is the Chief Open Source Compliance Officer of Intel Corporation. He has been involved with Software Bill of Materials and SPDX since 2011. Alexios has 40 years of experience in Free and Open Source Software and holds a PhD in Computer Science after having studied in... Read More →

Monday September 16, 2024 14:35 - 14:55 CEST
Room 0.94-0.95 (Level 0)

Operations Management Summit

Audience Level Any

15:25 CEST

Panel Discussion: Creating Your Community Mentorship Program - Stephanie Taylor, Google; Abigail Cabunoc Mayes, GitHub; and Hong Phuc Dang, FOSSASIA; & Karen Sandler, Software Freedom Conservancy

Monday September 16, 2024 15:25 - 16:05 CEST

Hall M1 (Level 1)

Mentorship is key to bringing new people into your open source communities. There are large programs (Google Summer of Code, Outreachy) and many smaller programs that have successfully integrated new contributors into open source communities making them long term contributors. In this panel we’re going to discuss some of the things you need to think about when creating a new mentorship program (single or multi-community). From how to find the right mentors, have great beginner documentation ready, set expectations, where to advertise your program and plenty of time for Q&A.

Speakers

Karen Sandler

Software Freedom Conservancy

Hong Phuc Dang

Founder, FOSSASIA

Hong Phuc is the founder of FOSSASIA, an organization dedicated to leveraging open technologies to enhance societal well-being and foster sustainable production practices. She chairs the annual FOSSASIA Summit, one of the largest open source conferences in Asia. With over a decade... Read More →

Stephanie Taylor

Google Summer of Code Program Lead, Google

Stephanie Taylor leads the Google Summer of Code program, now in its 20th year of introducing beginners to open source software development. Stephanie has been at Google in the Open Source Programs Office since 2011 and is dedicated to bringing enthusiastic developers from around... Read More →

Abigail Cabunoc Mayes

Open Source Maintainer Programs, GitHub

Abigail Cabunoc Mayes (@abbycabs) leads GitHub’s open source maintainer programs where she works to help maintainers – and the open source ecosystem – thrive. Before joining GitHub, Abby founded and led Mozilla Open Leaders, an open source mentorship program that worked with... Read More →

Monday September 16, 2024 15:25 - 16:05 CEST
Hall M1 (Level 1)

Diversity Empowerment Summit

Audience Level Any

15:25 CEST

DAMON Recipes: Ways to Save Memory Using a Linux Kernel Subsystem in the Real World - SeongJae Park, Amazon

Monday September 16, 2024 15:25 - 16:05 CEST

Room 0.49 - 0.50 (Level 0)

DAMON is a Linux kernel subsystem for efficient data access monitoring that has been integrated into the mainline since v5.15. The subsystem has been further developed into an access-aware system operating engine. In addition, userspace tools for DAMON have been developed to provide a human-friendly interface and additional userspace capabilities. Several major Linux distributions now offer DAMON-enabled kernels and user-space tool packages. Of course, not all use cases for DAMON are known, but the DAMON maintainer has been privileged to hear about some interesting and creative uses of DAMON from several people who primarily use DAMON for memory efficiency in their prototypes, researches, and products. In this talk, we'll give a brief introduction to the practical benefits and unique internal mechanisms that DAMON provides, with live demos of key features. We'll then detail real-world examples of DAMON use in prototypes, researches, and products. Finally, we'll show you how you can join the project community for participating to the development or get help. The rest of the talk will be followed by a Q&A.

Speakers

SeongJae Park

Kernel Development Engineer, Amazon

SeongJae Park is a Linux kernel programmer who maintains the data access monitoring framework of the Linux kernel called DAMON (https://damonitor.github.io/). His interests include operating system kernels, parallel computing, and memory management.

Monday September 16, 2024 15:25 - 16:05 CEST
Room 0.49 - 0.50 (Level 0)

LinuxCon

Audience Level Any

11:00 CEST

Testing Your Yocto Project - from Ptest and Testimage to LAVA - Clara Kowalsky & Florian Bezdeka, Siemens

Tuesday September 17, 2024 11:00 - 11:40 CEST

Room 0.14 (Level 0)

Before setting up a test automation framework for your Yocto project, it is worth considering which options are available and most suitable. In this talk, we will explore which tools are appropriate depending on project complexity and scalability. For a small Yocto project where a test environment needs to be up and running as quickly as possible and only one piece of hardware is supported, a complete test setup can be created using only the testimage class for image testing and ptest for package testing. The tests can be carried out locally or in a CI/CD system. Using Gitlab CI/CD as an example, we will show how the results of testimage can be neatly displayed as a unit test report. For more complex projects that support a variety of architectures and require tests to be automatically scheduled on devices, it is advisable to use an automated test framework. We will demonstrate how ptest and pytest can be integrated into a LAVA test environment and what alternatives to LAVA exist.

Speakers

Clara Kowalsky

Linux Software Engineer, Siemens

Clara Kowalsky is working as a consultant software engineer in the Linux Expert Center at Siemens Technology. She is regularly contributing to multiple inner-source and open-source projects, especially in the field of real-time (e.g., Xenomai) and embedded Linux tooling. She gives... Read More →

Florian Bezdeka

Linux Software Engineer, SIEMENS AG

Florian is working as a consultant software engineer in the Linux Expert Center at Siemens Technology. He is regularly contributing to multiple inner-source and open-source projects, especially in the field of real-time Linux (e.g., Xenomai) and embedded Linux tooling. He gives internal... Read More →

Tuesday September 17, 2024 11:00 - 11:40 CEST
Room 0.14 (Level 0)

Embedded Linux Conference

Audience Level Any

11:55 CEST

Simplifying Generative AI App Development: Why Standards Matter - Katherine Druckman & Ezequiel Lanza, Intel

Tuesday September 17, 2024 11:55 - 12:35 CEST

Hall B (Level 2)

Demand for generative AI development is moving like a bullet train! Rapid innovation can move lightning-fast and produce exciting projects. Now is the time to embrace open development, refine best practices, and collaborate on standards for all to benefit. This session will outline common pain points involved in building LLM-based generative AI applications, especially those using RAG techniques, and connect them to open solutions. We will share reference architectures to help shorten developers’ paths to releasing performant AI applications to meet the needs of stakeholders and users. Finally, we’ll share community efforts, such as the Linux Foundation’s Open Platform for Enterprise AI project, to advance this critical work. Join us to explore ways to discover the untapped potential in generative AI development workflows.

Speakers

Ezequiel Lanza

Open Source AI Evangelist, Intel

Passionate about helping people discover the exciting world of artificial intelligence, Ezequiel is a frequent AI conference presenter and the creator of use cases, tutorials, and guides that help developers adopt open source AI tools.

Katherine Druckman

Open Source Security Evangelist, Intel

Katherine Druckman is an Open Source Evangelist at Intel where she enjoys sharing her passion for a variety of open source topics. She is a long-time open source advocate, developer, and podcaster, and is currently the host of Open at Intel and co-host of the FLOSS Weekly and Reality... Read More →

Tuesday September 17, 2024 11:55 - 12:35 CEST
Hall B (Level 2)

Open AI + Data Forum

Audience Level Any

11:55 CEST

Bridging the Gap: Incorporating Open Source Into Product Managers' Toolbox - Philipp Ahmann, Robert Bosch GmbH

Tuesday September 17, 2024 11:55 - 12:35 CEST

Hall C (Level 2)

In the world of product management, spread sheets and analysis tools dominate the daily business. However, when it comes to open source, many product managers struggle to quantify its benefits and limit it to risk and compliance handling. This session aims to bridge the gap between the open source community and product managers by exploring how open source can be incorporated into their existing tools and considerations. While traditional tools focus on quantifiable metrics, the non-quantifiable benefits of open source communities, such as technology awareness and company insights, are often overlooked. By integrating open source considerations and measuring points into existing tools and perspectives, including monetary quantifiable numbers, product managers can build a comprehensive business case that captures the value of open source. Attendees of this session will gain insights into the tools and considerations that product managers employ in their journey towards product innovation. By understanding product manager perspectives and needs, the open source community can better collaborate and support the integration of open source into product development processes.

Speakers

Philipp Ahmann

Sr. OSS Community Manager, Etas GmbH (BOSCH)

Philipp Ahmann is an experienced senior OSS community manager at Etas GmbH (BOSCH) specializing in safety and automotive grade open source stacks for software defined vehicles. He holds the position of technical steering committee chair for the Linux Foundation ELISA project to Enable... Read More →

Tuesday September 17, 2024 11:55 - 12:35 CEST
Hall C (Level 2)

Open Source Leadership Summit

Audience Level Any

11:55 CEST

Policing Open-Source Projects at Scale - Thomas Neidhart, Eclipse Foundation

Tuesday September 17, 2024 11:55 - 12:35 CEST

Room 0.96-0.97 (Level 0)

Large open-source foundations like the Eclipse Foundation are faced with the challenge of maintaining thousands of repositories for the numerous projects and monitoring that these repositories adhere to certain policies and security guidelines to provide an open, transparent and secure environment for the development of open-source software. We would like to present our approach to tackle these challenges: a system where our projects as hosted on GitHub have their configuration stored as code in a repository itself, and project members can request changes to this configuration by opening a pull request, and once approved, changes get applied automatically. With this approach it is possible to make the current infrastructure of a project transparent to everyone involved, highlight items that should be addressed to adhere to certain policies and empower teams to improve and secure their repositories more easily. In this talk we would also like to outline what we have learned while rolling out this service to projects at the Eclipse Foundation and how such an approach can help to increase collaboration in your community as members are able to learn from each other.

Speakers

Thomas Neidhart

Security Engineer, Eclipse Foundation

Passionate open source developer, focused on helping open-source projects to be more productive and secure.

Tuesday September 17, 2024 11:55 - 12:35 CEST
Room 0.96-0.97 (Level 0)

SupplyChainSecurityCon

Audience Level Any

12:15 CEST

Lightning Talk: Using Zephyr to Power the Sustainable Cloud - Dan Kalowsky, Ampere Computing

Tuesday September 17, 2024 12:15 - 12:25 CEST

Hall M1 (Level 1)

Share how Ampere Computing uses Zephyr to re-imagine the cloud in a more sustainable way. Covering some of the challenges encountered aligning product goals with Zephyr, adding new code coverage beyond the upstream support, and getting a test environments up and running.

Speakers

Dan Kalowsky

Firmware Engineer, Ampere Computing

Dan is an engineer passionate about code quality with an almost unhealthy relationship on simplifying processes. He has been active on and off in the Zephyr community since the start. His role at Ampere spans multiple areas of technology.

Tuesday September 17, 2024 12:15 - 12:25 CEST
Hall M1 (Level 1)

Zephyr

Audience Level Any

13:00 CEST

RISC-V and RISE Project BoF - Drew Fustini, Tenstorrent

Tuesday September 17, 2024 13:00 - 13:40 CEST

Room 0.11-0.12 (Level 0)

RISC-V is an open instruction set that is taking the world by storm, enabling new and creative hardware designs across the spectrum of computing devices - many of which are themselves open. This BoF is a meeting place at EOSS to discuss the current state of RISC-V as well as the RISE Project, an open source initiative under LF Europe to support the RISC-V software ecosystem.

Speakers

Drew Fustini

Linux Kernel Engineer, Tenstorrent

Drew Fustini is an open hardware designer and embedded Linux developer. He serves on the board of directors for the Open Source Hardware Association and the BeagleBoard.org Foundation, and is an ambassador for the RISC-V Foundation. Drew designs circuit boards for OSH Park, a PCB... Read More →

Tuesday September 17, 2024 13:00 - 13:40 CEST
Room 0.11-0.12 (Level 0)

Embedded Linux Conference

Audience Level Any

14:00 CEST

Developing Wildlife Camera Traps with Zephyr RTOS - Alex Bucknall, Arribada Initiative

Tuesday September 17, 2024 14:00 - 14:20 CEST

Hall M1 (Level 1)

Monitoring wildlife and environmental changes often requires deploying remote camera traps that can capture imagery and activity over long periods of time. These camera systems need to be low-power, portable, and easily adapted to different hardware configurations based on project requirements.

This talk will cover how we utilised Zephyr to develop flexible time lapse camera solutions for conservation applications. We’ll explore our time lapse camera deployment in Bermuda and how we’re using Zephyr to monitor and understand the impact of seagrass decay on the local marine life. Zephyr allowed us to rapidly target different hardware platforms by abstracting away complex hardware interactions. We'll discuss how Zephyr's hardware and driver APIs simplify peripheral access to cameras, RTCs, and power management features across multiple vendor SoCs.

Additionally, we'll explore challenges associated with this kind of cross-platform support, such as lack of core features for certain vendor SoCs. We'll also share insights into optimising for size, performance, and battery life on constrained embedded devices.

Speakers

Alex Bucknall

Senior Engineer, Arribada Initiative

An Engineer who fell into the world of conservation. Busy developing tools and projects to support conservation, environmental and humanitarian crises. PhD in high performance reconfigurable computing platforms.

Tuesday September 17, 2024 14:00 - 14:20 CEST
Hall M1 (Level 1)

Zephyr

Audience Level Any

14:00 CEST

Are You Ready For Scarthgap? Best Practices For The Latest Yocto Project LTS Release - Tim Orling, Konsulko Group

Tuesday September 17, 2024 14:00 - 14:40 CEST

Room 0.11-0.12 (Level 0)

The latest Long Term Support release of the Yocto Project, code named “scarthgap”, has support until April 2028. With proven techniques to upgrade from older releases we hope to encourage you to move forward with confidence. We will start with recommendations for how to set up your own “distribution”, board-support package (BSP) and software layers. We will share some techniques for managing and discovering layers. We will discuss best practices to ensure your public layers are ready for the Layer Index. We will investigate how to use meta-lts-mixin layers to be able to use newer releases of components like Rust, Go and U-Boot. As supply chain becomes increasingly important, we will cover the latest Software Bill of Materials (SBOM) and license compliance (SPDX) tools. We will share some tools for discovering software vulnerabilities (CVEs) in your project. New IDE tools were added in this release and we share ways to leverage them, along with containers to ensure your builds are consistent and reproducible. We will cover some of the over the air update tools which are available. Our examples will leverage some of the newest single-board computers: Raspberry Pi 5 and Beagle Play.

Speakers

Tim Orling

Principal Software Engineer, Konsulko Group

Tim Orling is a Principal Software Engineer at Konsulko Group. Tim joined Konsulko Group at the end of 2021. Tim was elected to the OpenEmbedded Board in 2022. He has spent many years as a volunteer developer for OpenEmbedded and the Yocto Project. He has been an open source software... Read More →

Tuesday September 17, 2024 14:00 - 14:40 CEST
Room 0.11-0.12 (Level 0)

Embedded Linux Conference

Audience Level Any

14:00 CEST

Planning for Retirement: How Can We Prepare for Software’s End-of-Life/End-of-Support Date? - Victoria Ontiveros, CISA & Justin Murphy, DHS/CISA

Tuesday September 17, 2024 14:00 - 14:40 CEST

Room 0.96-0.97 (Level 0)

The ambiguity surrounding terminology and general uncertainty amplifies the end-of-life/end-of-support problem: What is end-of-life? How is end-of-life different from end-of-support? How does this affect supply chain and operational security? This presentation will begin with an overview of the EOL/EOS problem and suggest definitions for key terms to the discussion. Creating shared terminology can support the community in facilitating discussions around EOL/EOS and generating solutions. This presentation will map the EOL/EOS problem to other ongoing discussions including software naming and versioning, acknowledging that this is not a new problem and it is unlikely there is one singular solution. The presentation will also include discussion of the potential role of existing software transparency and supply chain security efforts, such as SBOM, VEX, and CSAF, may play in managing EOL/EOS. We will highlight the OpenEoX efforts from the OASIS community seeking to develop an open source, standardized method to ascertain the EOL/EOS status of products, as well as other ongoing policy efforts. The presentation will close with time for feedback on the presentation and discussion.

Speakers

Justin Murphy

Vulnerability Analyst, DHS/CISA

Justin Murphy is a Vulnerability Analyst with the Cybersecurity and Infrastructure Security Agency (CISA). He helps to coordinate the remediation, mitigation, and public disclosure of newly identified cybersecurity vulnerabilities in products and services with affected vendor(s... Read More →

Victoria Ontiveros

Cybersecurity Specialist, CISA

Victoria Ontiveros joined the Cybersecurity and Infrastructure Security Agency (CISA) in June 2023 as a cybersecurity specialist. At CISA, she supports the agency's software bill of materials (SBOM) work, collaborating with partners across the software ecosystem, U.S. government... Read More →

Tuesday September 17, 2024 14:00 - 14:40 CEST
Room 0.96-0.97 (Level 0)

SupplyChainSecurityCon

Audience Level Any

14:55 CEST

Lightning Talk: Open Source Fleet Management in Zephyr - Maciej Sobkowski, Antmicro

Tuesday September 17, 2024 14:55 - 15:05 CEST

Hall M1 (Level 1)

Complex, real-life embedded system deployments often consist of multiple SoCs/MCUs running a mix of OSes, ranging from user-facing high-end nodes based on Linux/Android to MCUs dedicated to controlling specific low-level functions of the device, using an RTOS like Zephyr. Over-the-air updates for such systems poses a challenge, as the firmware needs to be updated in a safe & coordinated way.

Remote Device Fleet Manager is a permissively licensed, fully open source and self-hostable framework for modular, configurable OTA updates, fleet management and ML data management that supports Linux, Android, and, since recently, also Zephyr-based platforms.

This talk will delve into how RDFM was extended to support Zephyr-based systems, the motivations and considerations of the development and some interesting use cases it enables. RDFM allows for fully redundant updates, incl. rollback to the previous version, grouped device updates and mixed OS deployments.

To enable tight interoperability with Zephyr's ecosystem, the integration is based on the MCUmgr library, communicating with Zephyr devices via the SMP protocol. The MCUboot bootloader is used for managing the firmware on the device.

Speakers

Maciej Sobkowski

Senior Software Engineer, Antmicro

Maciej Sobkowski is a Senior Software Engineer at Antmicro. His area of expertise includes embedded systems and kernel development, focusing on device drivers, OTA systems and the V4L2 framework. He has 9 years of professional experience in developing low-level software for embedded... Read More →

Tuesday September 17, 2024 14:55 - 15:05 CEST
Hall M1 (Level 1)

Zephyr

Audience Level Any

14:55 CEST

Panel Discussion: Do One Thing, and Do It Well: Special Purpose OSes Apply the Unix App Philosophy to the Whole OS - Danielle Tal, Microsoft; Mauro Morales, Spectro Cloud; Felipe Huici, Unikraft GmbH; and Richard Brown, SUSE; Erik Nordmark, Zededa

Tuesday September 17, 2024 14:55 - 15:35 CEST

Room 2.15 (Level 2)

Our BoF panel features representatives of popular, highly specialized Linux distributions like Kairos, Flatcar, Eve, BottleRocket, Unikraft, SUSE MicroOS, and others. After a brief introduction we will open a discussion with the audience about the purpose, and limits, of special-purpose operating systems, on operational challenges, and on differences to general purpose operating systems. Discussions may include a wide variety of topics our audience is interested in discussing, e.g. opportunities to improve operations reliability and security, developing and operating cloud-native workloads, workload isolation, and trusted/measured boot.

Speakers

Erik Nordmark

CTO and co-founder, Zededa

Erik is co-founder and CTO at ZEDEDA, and is an expert on architecting and implementing large scale software systems. Prior to ZEDEDA he developed software at Arista Networks, was a Cisco Distinguished Engineer & was a Sun Microsystems Distinguished Engineer. He has been driving Internet... Read More →

Richard Brown

Distributions Architect, SUSE

Richard is an openSUSE contributor since the project began and the founder of the Aeon Desktop. A Former Systems Manager, QA Engineer, openSUSE Board Member & openSUSE Chairperson, Richard is currently a Distributions Architect at SUSE Aeon extends openSUSE's Immutable MicroOS to... Read More →

Felipe Huici

CEO & Co-Founder, Unikraft GmbH

Dr. Felipe Huici is CEO and Co-Founder of Unikraft, a start-up dedicated to lightweight and open source virtualization tech. Prior he worked as chief researcher at NEC Laboratories Europe, has published in several top tier conferences such as SOSP, ASPLOS, OSDI, Eurosys, SIGCOMM... Read More →

Danielle Tal

Program Manager, Microsoft

Danielle Tal is a Program Manager at Microsoft and an integral part of the team responsible for maintaining Flatcar Container Linux. The team is contributes to Linux OS distributions and Linux Security within Azure and other upstream projects. With a background in supporting diverse... Read More →

Mauro Morales

Open Source Developer Specialist, Spectro Cloud

Mauro is a Guatemalan software developer with more than 17 years of professional experience. His main focus is on backend and CLI applications using the Ruby and Go programming languages. He’s also had a chance to participate in the Open-Source community on projects like Cloud Foundry... Read More →

Tuesday September 17, 2024 14:55 - 15:35 CEST
Room 2.15 (Level 2)

CloudOpen

Audience Level Any

14:55 CEST

Towards Industrial AI Governance Inspired by OSPO: A Primer - Zoran Jovanovic, Volvo Car Corporation

Tuesday September 17, 2024 14:55 - 15:35 CEST

Hall B (Level 2)

Strategic position of AI development in industrial settings, the surrounding regulations, and organizational challenges, have an interesting analogy in how we deal with Open Source Software on industrial scale. Definition of governance as set of processes and guidelines for decision making within an organization gives us an opportunity to apply similar abstract models to seemingly different areas of endeavor such as AI production and consumer organizations, on one side, and Open Source Software, on the other. The learnings from running technical operations of OSPOs translate remarkably well into this model. Intake, compliance, distribution, so well known in the world of Open Source Program Offices, with its federated democratized governance, are some of the pillars of the processes that drive AI production and consumption organizations. In this talk we will try to shed some light on how in Volvo Cars we approach practical aspects of these growing processes.

Speakers

Zoran Jovanovic

Enterprise Architect / Sr.Staff Engineer, Volvo Car Corporation

After nearly 15 years of work in and around Open Source Program Office and Software Architecture in Sony Mobile moved to Volvo Cars where I spend most of my time helping teams with Enterprise Architecture, technical aspects of work with Open Source compliance and distribution, as... Read More →

Tuesday September 17, 2024 14:55 - 15:35 CEST
Hall B (Level 2)

Open AI + Data Forum

Audience Level Any

14:55 CEST

Panel Discussion: Measuring the Health of Open Source Projects in Public Health - Cynthia Lo, GitHub and World Health Organization; Samuel Mbuthia, World Health Organization; Liliana Torres Sanchez, GitHub; Ian Candy, GitHub; Andrew Henry, GitHub

Tuesday September 17, 2024 14:55 - 15:35 CEST

Hall C (Level 2)

This session will showcase how open source metrics can be used for monitoring open source projects developed for global health challenges. GitHub and the World Health Organization (WHO) partnered to build a framework for tracking and analyzing the health of open source projects. The WHO, an international public health agency of the United Nations, utilizes and creates open source digital tools to enhance global health efforts for remote care, disease surveillance, epidemiological modeling, health information systems for data collection and analysis, and digital platforms for emergency response. Within these tools, challenges exist in monitoring open source: the lack of a high level view of best practices adopted by various open source projects; linking open source practices to realized impact in the public health; and building interest in open source work and advocating for more open source development within the global health community. This presentation will highlight these challenges, discuss opportunities to tackle them and close with an open dialogue on how open source projects can be measured, and drive collaboration between the OS community and public health practitioners.

Speakers

Andrew Henry

Senior Software Engineer, GitHub

Liliana Torres Sanchez

Senior Data Analyst, GitHub

Ian Candy

Senior Software Engineer, GitHub

Cynthia Lo

Program Manager, GitHub

Cynthia is program manager with a background in project management and process improvement. Currently she leads the Skills-Based Volunteering program at GitHub.

Samuel Mbuthia

OSPO Lead, World Health Organization

Samuel Mbuthia leads the World Health Organization (WHO) Open Source Programme Office. He is based at the WHO Hub for Pandemic and Epidemic Intelligence in Berlin. Before joining WHO, Samuel spent many years working on technology in public health, leading technical aspects of various... Read More →

Tuesday September 17, 2024 14:55 - 15:35 CEST
Hall C (Level 2)

Open Source Leadership Summit

Audience Level Any

16:00 CEST

DevSecOps Transformation at Speed and Scale Using Tekton - Caroline Cameron & Tony Higham, IBM

Tuesday September 17, 2024 16:00 - 16:40 CEST

Hall M2 (Level 2)

The distributed development effort across individual teams to build secure software in a constantly evolving security threat landscape results in massive duplication of CI/CD automation work and inconsistent security and compliance postures across teams. The solution is to standardize the CI/CD security & compliance automation for development teams and centralize platform operations and maintenance. Our centralized CI/CD platform prevents software security problems from reaching production systems and streamlines compliance audits using built-in DevSecOps practices. Tekton is used as the open source orchestrator to standardize CI/CD and contribute open source enhancements through our valued ecosystem partnerships to benefit all users. The platform includes open source scanning tools such as Clair for OSS threat intelligence, SonarQube for SAST, and OWASP ZAP for DAST. The platform also extends the traditional CI and CD pipelines with a Continuous Compliance (CC) pipeline which ensures that deployed applications are scanned for new vulnerabilities on a daily basis with unique capabilities to auto remediate identified vulnerabilities and auto close resolved incident issues.

Speakers

Caroline Cameron

DevSecOps Engineering Lead at IBM, IBM

Caroline is a DevSecOps transformation thought leader and passionate advocate for integrating secure software supply chain tools and practices early and often into the SDLC. Her background in the IBM CISO organization, and keen interest in security and compliance, keep her at the... Read More →

Tony Higham

Chief Architect and Strategist - DevSecOps Transformation, IBM

With a track record as a recognized Distinguished Engineer, digital officer, and IT architect, I possess a history of delivering high-impact, innovative, customer facing solutions in the cloud applications industry. Among my talents are the ability to develop and mentor technical... Read More →

Tuesday September 17, 2024 16:00 - 16:40 CEST
Hall M2 (Level 2)

ContainerCon

Audience Level Any

16:00 CEST

Panel Discussion: Outreachy Linux Kernel Internship Report - Julia Lawall, Inria; Hans Verkuil, Cisco Systems Norway; Tahera Fahimi, University of Calgary; Khadija Kamran; and Dorcas Litunya, Jomo Kenyatta University

Tuesday September 17, 2024 16:00 - 16:40 CEST

Room 1.61 & Room 1.62 (Level 1)

Come learn about the great accomplishments of our Outreachy Linux Kernel Interns! Outreachy offers open source internships to people subject to systemic bias and impacted by under-representation in the technical industry where they are living. Julia Lawall offers an overview of the Outreachy Linux Kernel Community followed by intern presentations showcasing their projects and experiences: * Dorcas Litunya: Improving support for the Vivid Test Driver * Khadija Kamran: Analyzing Linux Kernel Security Subsystems * Tahera Fahimi: Improving Landlock Access Control Linux Kernel Maintainer Hans Verkuil wraps up the panel by sharing his experience as an Outreachy mentor.

Speakers

Hans Verkuil

Cisco Systems Norway

Hans Verkuil started contributing patches to the MPEG encoder/decoder ivtv driver in early 2004 and it snowballed from there. He is a media subsystem co-maintainer responsible for V4L2 bridge drivers, video receivers and transmitters, and maintainer of the HDMI CEC framework. Since... Read More →

Julia Lawall

Researcher, Inria

Dorcas Litunya

Jomo Kenyatta University

Khadija Kamran

Intern

Tahera Fahimi

Outreachy Intern, University of Calgary

Tahera Fahimi is a graduate student at the University of Calgary.

Tuesday September 17, 2024 16:00 - 16:40 CEST
Room 1.61 & Room 1.62 (Level 1)

LinuxCon

Audience Level Any

16:00 CEST

Preparing Zephyr for Safety Element out of Context Certification - Nicole Pappler, AlektoMetis.com

Tuesday September 17, 2024 16:00 - 16:40 CEST

Hall M1 (Level 1)

Zephyr, as also other open source projects, is heading towards functional safety, to achieve a safety certification as a Safety Element out of Context (SEooC) the question of what this really means comes up quite often.

There are usually three stakeholders in a project like project community, the assessor and the user, who actually wants to use the certified software

As all these parties have different expectations of what this certification will require, there are a lot of different rumours and opinions out there regarding functional safety certification. This talk will give an introduction to what qualification evidence is usually prepared and assessed for a SEooC certification, what this means for the project and how it can actually be integrated into a safety relevant software system.

This talk will also give an update of the current status of the safety working group, how to participate and what to expect there.

Speakers

Nicole Pappler

Senior Safety Expert, AlektoMetis

Tuesday September 17, 2024 16:00 - 16:40 CEST
Hall M1 (Level 1)

Zephyr

Audience Level Any

16:55 CEST

SCA for Containers: The Good, the Bad, and the Truth - Arun Azhakesan, Siemens Healthineers & Philippe Ombredanne, AboutCode

Tuesday September 17, 2024 16:55 - 17:35 CEST

Hall M2 (Level 2)

Containers revolutionized the software development and deployment process. But there are still practical concerns, especially related to software supply chain integrity and security, that require further improvements. Software Composition Analysis (SCA) identifies components used in software applications and systems, often for software supply chain concerns like SBOMs, which is increasingly important for distributed, containerized systems. Many open source and proprietary SCA tools are marketed specifically for containers. After testing many open source and proprietary tools, we completed a project comparing the accuracy, depth, and breadth of these tools' detection capabilities. The results were not always good. In this talk, Arun from Siemens Healthineers and Philippe from AboutCode will share their experiences so you don't make the same mistakes.

Speakers

Arun Azhakesan

Head of Secure Development and Compliance, Siemens Healthineers

Arun Azhakesan heads the Secure Development and Compliance team that drive open-source compliance activities at Siemens Healthineers. He is co-project lead for Eclipse SW360 and an active member of the LF OpenChain Project and multiple open source communities that focus on developing... Read More →

Philippe Ombredanne

Lead Maintainer, AboutCode

Philippe Ombredanne is a FOSS hacker passionate about enabling easier and safer reuse of open source code. He is the lead maintainer of the AboutCode stack of open source tools for Software Composition Analysis and license and security compliance, including the industry-leading ScanCode... Read More →

Tuesday September 17, 2024 16:55 - 17:35 CEST
Hall M2 (Level 2)

ContainerCon

Audience Level Any

16:55 CEST

Panel Discussion: The Next Phase in OSS (Ideate, Design and Build) - Samson Goddy, Open Source Community Africa; Oluebube Princess Egbuna, Drogo AI; and Edidiong Asikpo, Zuplo

Tuesday September 17, 2024 16:55 - 17:35 CEST

Hall C (Level 2)

In the last three decades, we’ve seen an evolution of open source starting from the ’90s when foundations and ideas were birthed with the likes of the Free Software Foundation, the Open Source Initiative, and projects that changed the world like the Linux Kernel and the Apache server. From there, open source has gotten into mainstream adoption and advocacy, where we have platforms like GitLab, GitHub, and SourceForge, enabling people to build software projects openly and increasing collaboration among people in tech. Within the last ten years, groundbreaking innovations like the cloud, AI, and big data have become open source by default - this is where we are now. However, the global south is still stuck in the advocacy and adoption phase, with people who haven’t moved beyond their first contribution or are only aware of open source. We need to address this and move the global south to the next phase of open source—ideation, designing, and building. In this talk, we will share what we’ve been doing in Open Source Community Africa for the last 8 years and how we are currently fixing this problem through our latest flagship program, IDB (Ideate, Design, Build).

Speakers

Princess Oluebube

Software Engineer, Drogo AI

Oluebube, affectionately known as Bube, is a talented software engineer who has transitioned into the cloud native space. She has over six years of experience as a software engineer and has successfully led engineering teams to deliver high-impact software solutions. Bube is passionate... Read More →

Samson Goddy

Co-founder, Open Source Community Africa

I am the co-founder of Open Source Community Africa, I serve as one of the board members for Open Source Collective, a project that helps sustain open source projects through the open collective platform. A board of directors with Sugar Labs, inc the new organization behind the Sugar... Read More →

Edidiong Asikpo

Developer Advocate, Zuplo

Edidiong Asikpo is a Senior Developer Advocate based in Lagos, Nigeria. She is passionate about sharing her knowledge of DevOps through technical articles, videos, and social media. Edidiong has given over 100+ talks at tech events worldwide and continues to play a significant role... Read More →

Tuesday September 17, 2024 16:55 - 17:35 CEST
Hall C (Level 2)

Open Source Leadership Summit

Audience Level Any

16:55 CEST

Principles of Authentic Participation for Corporate Contributors - Cornelius Schumacher, DB Systel GmbH

Tuesday September 17, 2024 16:55 - 17:35 CEST

Room 0.94-0.95 (Level 0)

As the open source ecosystem grows, an increasing number of professionals are engaging with open source projects through their employment. This presents challenges, practical, legal, and above all cultural. To navigate these, a group of experienced community members has written a guide outlining guardrails of how to bridge corporate and community worlds. We call this the "Principles of Authentic Participation." This presentation will explore these principles, drawing on real-world experiences to highlight effective strategies for bridging corporate and community interests in open source development. Attendees will gain insights into practical and ethical engagement, tailored for those who contribute to open source projects as part of their corporate roles or manage such initiatives. We aim to foster a meaningful dialogue that promotes genuine collaboration between the corporate world and the open source community.

Speakers

Cornelius Schumacher

Open Source Steward, DB Systel GmbH

Cornelius helps teams at Deutsche Bahn, the German railway company, to use and contribute to open source software. He has a background from more than two decades in the open source community and industry. Originally a software developer he now focus on management of open source.

Tuesday September 17, 2024 16:55 - 17:35 CEST
Room 0.94-0.95 (Level 0)

OSPOCon

Audience Level Any

17:45 CEST

BoF: The Yocto Project and OpenEmbedded - Josef Holzmayr, Northern.tech as Mender.io & Philip Balister, OpenSDR

Tuesday September 17, 2024 17:45 - 18:15 CEST

Room 0.11-0.12 (Level 0)

This BoF provides an open forum for the Embedded Linux community to ask questions and discuss issues with the Yocto Project and OpenEmbedded community. We open with a Yocto Project summary and OpenEmbedded State of the Union. All users, contributors and maintainers as well as curious minds are invited to bring their thoughts and topics.

Speakers

Philip Balister

Minister of Progress, OpenSDR

Josef Holzmayr

Head of Developer Relations, Northern.tech as Mender.io

Josef has been active for more than 15 years as a "Complete"-Stack developer for industrial controls by now. A passion for showing, telling, and teaching people in both entertaining and engaging ways led Josef to Mender.io. Here, he tries to make the world better and more secure by... Read More →

Tuesday September 17, 2024 17:45 - 18:15 CEST
Room 0.11-0.12 (Level 0)

Embedded Linux Conference

Audience Level Any

11:00 CEST

What Was Life Like Before Open Source? - Dave Stokes, Percona

Wednesday September 18, 2024 11:00 - 11:40 CEST

Room 2.31 (Level 2)

Those who forget history are doomed to repeat it at a much higher price tag. In these days of new restrictive licenses, It may help those who have grown up with open-source get a quick history lesson on what life was like back in the day when you bought everything - hardware, software, manuals, training - from a sole vendor. Interoperability was minimal, code sharing between different hardware brands was next to impossible, and a manufacturer's new line of products could instantly reduce your investment to zero value. Then came Unix (and later Linux), TCP/IP, and the revolution that produced our current outlook on software and systems. Help keep open-source from slipping away by understanding what we once endured and what many have to suffer through again.

Speakers

Dave Stokes

Technology Evangelist, Percona

Dave Stokes is a Technology Evangelist for Percona Corporation. He has worked for organizations ranging alphabetically from the American Heart Association to Xerox in areas ranging from anti-submarine warfare to webmaster. He lives in a small Texas town with the required hound dog... Read More →

Wednesday September 18, 2024 11:00 - 11:40 CEST
Room 2.31 (Level 2)

Open Source 101

Audience Level Any

11:00 CEST

1 Billion Dollars for Open Source Maintainers - Tobie Langel, UnlockOpen

Wednesday September 18, 2024 11:00 - 11:40 CEST

Hall C (Level 2)

Worldwide, we spend close to 2 trillion dollars per year for the loaded cost of software developers. If every company spent just 0.05% of that amount to fund open source maintainers, we’d unlock a billion dollars per year to fund the maintenance of open source. That would pay the full time salaries for thousands of maintainers, their managers, security training, etc. That seems fairly cheap for software that accounts for 70% to 97% of our software stack depending on how you count. And just imagine the positive impact on the security of our software supply chain! What are we waiting for? We’re way overdue making a clear distinction between open source developers and open source maintainers and professionalizing the latter. This talk will explore what doing so would actually look like and give an overview of the current efforts to support open source maintainers.

Speakers

Tobie Langel

Principal, UnlockOpen

Tobie Langel is a world-leading expert on open source and standardization. He advises some of the biggest names in tech (Google, Microsoft, Mozilla, Intel, Cisco), promising startups (Airtable, Postman, GitLab), industry organizations (OpenJS Foundation, OASIS Open, W3C) and nonprofits... Read More →

Wednesday September 18, 2024 11:00 - 11:40 CEST
Hall C (Level 2)

Open Source Leadership Summit

Audience Level Any

11:55 CEST

Open Source at a Crossroads - Michael Meskes, NetApp

Wednesday September 18, 2024 11:55 - 12:35 CEST

Room 2.31 (Level 2)

For the first time in history almost everyone uses open source, albeit often without getting the benefits of free software. Open source has accomplished unparalleled success in the IT industry, but with success comes challenges and risks. Over recent decades we have seen business models change while the industry and the users found the best ways to use open source. With software as a service we now see a fairly new but very successful approach, that goes hand in hand with open source, but is not without issues. This presentation will walk the audience through different approaches of monetizing and developing open source and examine the consequences of SaaS models for the open source ecosystem, both for business models and software development It will also point out how recent developments show the resilience of the Open Source world.

Speakers

Michael Meskes

Senior Director, NetApp

Michael Meskes has worked in open-source his whole career. He started and ran credativ, an open source company that is now part of NetApp, where Michael leads the same group of open source enthusiasts works on improving open source within NetApp. He started working on open-source... Read More →

Wednesday September 18, 2024 11:55 - 12:35 CEST
Room 2.31 (Level 2)

Open Source 101

Audience Level Any

11:55 CEST

Next-Gen Testing and Compliance: Ensuring Integrity in a Complex World - Riya Bansal, Microsoft

Wednesday September 18, 2024 11:55 - 12:35 CEST

Room 0.14 (Level 0)

"Next-Gen Testing and Compliance: Ensuring Integrity in a Complex World" delves into evolving testing and compliance frameworks to match the pace of digital innovation. This talk underscores the necessity for advanced methodologies to ensure standards maintain relevance and integrity amidst rapid technological advancements. We'll explore cutting-edge testing frameworks utilizing automation, AI, and machine learning, boosting the accuracy and efficiency of compliance checks. Highlighting adaptive testing environments, we emphasize simulating real-world scenarios for a nuanced approach to the software-hardware interplay in contemporary devices and systems. The session also tackles the challenge of keeping pace with compliance as technology outstrips regulation. We'll provide insights into anticipating future standards and preparing for compliance proactively. Through case studies of successful next-gen testing and compliance strategies, attendees will learn to navigate the complexities of maintaining specification integrity in our digital, interconnected era.

Speakers

Riya Bansal

Software Engineer, Microsoft

Riya Bansal is a Software Engineer at Microsoft, celebrated for her work on microservices and scalable systems, focusing on digital trust and security using open-source technologies. A staunch advocate for diversity in tech, she has been recognized with the Google Women Techmakers... Read More →

Wednesday September 18, 2024 11:55 - 12:35 CEST
Room 0.14 (Level 0)

Standards & Specifications Forum

Audience Level Any

14:00 CEST

How Is Integration Testing in Hybrid Cloud Possible? - Louisa Seers, IBM

Wednesday September 18, 2024 14:00 - 14:40 CEST

Hall M2 (Level 2)

This talk explores the challenges and solutions associated with conducting integration testing in hybrid cloud environments, where applications span both on-premises (z/OS) and cloud infrastructures. Focused on the innovative Galasa open-source project, the discussion delves into how Galasa addresses the complexities of hybrid cloud testing, offering a comprehensive framework for validating the interoperability of diverse components. Attendees will gain insights into practical strategies, best practices, and real-world examples, empowering them to effectively navigate the intricacies of integration testing in the evolving landscape of hybrid cloud computing.

Speakers

Louisa Seers

Product Manager, IBM

Wednesday September 18, 2024 14:00 - 14:40 CEST
Hall M2 (Level 2)

ContainerCon

Audience Level Any

14:00 CEST

Back to Security Basics: Evaluating, Consuming, and Contributing Open Source Software - Katherine Druckman, Intel

Wednesday September 18, 2024 14:00 - 14:40 CEST

Room 0.96-0.97 (Level 0)

We won! Open source software is everywhere... so now what? Shifting left starts at the beginning – ensuring the security of open source software requires careful evaluation, use, and contribution. This talk will cover some important challenges in securely consuming open source software. Attendees will learn to evaluate projects based on active maintenance, patch cycles, and vulnerability management. We will explore the role of project documentation, code contribution expectations, and community involvement in project maturity and code quality, as well as tools and community guidance. Walk away with the beginnings of a practical framework and checklist that you can mold to your own needs.

Speakers

Katherine Druckman

Open Source Security Evangelist, Intel

Wednesday September 18, 2024 14:00 - 14:40 CEST
Room 0.96-0.97 (Level 0)

SupplyChainSecurityCon

Audience Level Any

14:10 CEST

Lightning Talk: The Government and the Art of Infrastructure Maintenance - Powen Shiah & Mirko Swillus, Sovereign Tech Fund

Wednesday September 18, 2024 14:10 - 14:20 CEST

Room 0.49 - 0.50 (Level 0)

Join us in taking a look at how the Sovereign Tech Fund, a state-funded organization in Germany, has been developing ways to strengthen and support the free and open source ecosystem in the public interest. This ecosystem underpins the digital infrastructure, in particular the software components and tools, on which governments, private companies, and individuals rely. But what does it mean to strengthen this ecosystem? In this session, we’ll look at the different ways STF is putting public money to work for this mission. Some issues STF is working on include: a) Limited funding for long-term maintenance and security work b) Fragmented career and employment prospects for project maintainers c) Growing the pool of open source maintainers and contributors We’ll include lessons from the first two years of our existence, some insights from our survey of open source maintainers, as well ideas on how all the different parts in the FOSS landscape can work together for a more resilient and fair system. This is a work in progress, but we’re trying to ensure the software our societies depend on is sustainable in the long-term.

Speakers

Mirko Swillus

Program Manager, Sovereign Tech Fund

Mirko has 15 years of professional experience in software engineering, working in different setups and roles. He’s specifically interested in the question how engineering communities organise to achieve a sustainable productivity. Mirko is based in Dresden.

Powen Shiah

Communications, Sovereign Tech Fund

Powen handles communications at the Sovereign Tech Fund, highlighting the importance of open source digital infrastructure and the government's role in supporting it in the public interest. He’s worked in product marketing, communications, and internationalization in technology... Read More →

Wednesday September 18, 2024 14:10 - 14:20 CEST
Room 0.49 - 0.50 (Level 0)

Open Source in the Public Sector

Audience Level Any

14:20 CEST

Lightning Talk: From Spark to Flame: How Ideas and Collaboration Create a Ripple Effect in Public Sector Transformation - Nikki Winands & Alain Schoovers, Dutch Tax and Customs Administration

Wednesday September 18, 2024 14:20 - 14:30 CEST

Room 0.49 - 0.50 (Level 0)

We want to take you along in how modest yet "BOLD" ideas can spark and catalyze transformative organisational changes in the public sector. This session traces the evolution of small, innovative concepts into collaborative open source projects that revolutionize bureaucratic processes and cultural mindsets. We'll highlight the importance of discovering and collaborating with motivated and inspiring individuals who share a vision for change and embodying that change. By sharing our experience, you will gain insights into how these partnerships are crucial for activating and navigating the complexities of government structures, gaining support, creating momentum, and sustaining it. We transformed innovative sparks into powerful engines for systemic change by leveraging agile methodologies, engaging stakeholders, and building a coalition of champions. We aim to empower inspired individuals to continue championing their ideas, demonstrating that even the smallest initiative, when supported by the right people, can lead to significant transformations in governance and the way we serve the public.

Speakers

Alain Schoovers

Development Manager & Epic owner, Dutch Tax and Customs Administration

Hello, I'm Alain Schoovers. I blend strategic vision with adaptability, valuing genuine connections and understanding individual strengths and needs. My work, especially at the Dutch Tax and Customs Administration, involves sparking innovation through teamwork. I use agile methods... Read More →

Nikki Winands

Enterprise Architect, Dutch Tax and Customs Administration (Belastingdienst)

As an Enterprise Architect at the Dutch Tax Administration's CTO Office, I actively engage in initiatives in Sustainability, Open Source, and our transformative design system. With a 15-year background in IT, my approach is centered on driving innovation and continually pushing the... Read More →

Wednesday September 18, 2024 14:20 - 14:30 CEST
Room 0.49 - 0.50 (Level 0)

Open Source in the Public Sector

Audience Level Any

15:10 CEST

How Will IPCEI-CIS Redefine Open Source in the EU? - Alberto P. Martí, OpenNebula Systems

Wednesday September 18, 2024 15:10 - 15:50 CEST

Room 0.49 - 0.50 (Level 0)

The European Union has approved a €1.2 billion investment in the development of the first interoperable and openly accessible European data processing ecosystem, known as IPCEI-CIS. This initiative aims to reduce reliance on external providers and promote open source technologies. Despite skepticism about whether a state-driven initiative can foster open and collaborative software development, the EU's decision is one of the largest sovereignty-focused initiatives ever undertaken by the organization. The IPCEI-CIS project offers an alternative model based on leveraging European open source for mobilizing the many technological and innovation capabilities in the continent and creating together a Next-Generation European Platform for the Datacenter-Cloud-Edge Continuum. This powerful “made in EU” alternative will offer vendor neutrality and a sustainable future based on global collaboration, but fully aligned with the values and priorities of the European Union. In this presentation, we will discuss the challenges and opportunities that this project presents to citizens and developers, and how it will redefine the way we produce open source software in Europe.

Speakers

Alberto P. Martí

VP of Innovation, OpenNebula Systems

Alberto has developed most of his career in Spain and in the UK, both in the IT sector and in Academia. As VP of Open Source Innovation at OpenNebula Systems, he deals with strategic collaborations with public cloud/edge providers, open source initiatives, and development teams from... Read More →

Wednesday September 18, 2024 15:10 - 15:50 CEST
Room 0.49 - 0.50 (Level 0)

Open Source in the Public Sector

Audience Level Any

15:10 CEST

Advancing Transparency and Security in Software: A Deep Dive Into SPDXv3 - Alexios Zavras, Intel

Wednesday September 18, 2024 15:10 - 15:50 CEST

Room 0.14 (Level 0)

SBOMs are a crucial tool for understanding the composition of software, which is particularly important in the context of managing security risks and licensing compliance. Recent regulatory efforts from, among others, the US and the EU, explicitly move towards requiring SBOM for each software delivery. SPDX (System Package Data Exchange) is a freely available ISO standard that provides a set of specifications for communicating SBOM information. It offers a common format for companies and organizations to share important data accurately and efficiently. This presentation will delve into the details of the newly released version of SPDX, providing a comprehensive understanding of their importance in the software industry.

Speakers

Alexios Zavras

Chief Open Source Compliance Officer, Intel

Wednesday September 18, 2024 15:10 - 15:50 CEST
Room 0.14 (Level 0)

Standards & Specifications Forum

Audience Level Any

16:05 CEST

Linux Storage Stack Explained - Werner Fischer, Thomas-Krenn.AG

Wednesday September 18, 2024 16:05 - 16:45 CEST

Room 2.31 (Level 2)

“Everything is a file” or, more precisely, “Everything is a file descriptor”: this statement alone shows the importance of the storage stack under Linux. To ensure that data can be accessed reliably and efficiently regardless of the selected file system and the actual physical storage location, numerous layers in the Linux kernel interlock seamlessly: Virtual File System (VFS), page cache, block layer with different I/O schedulers, so-called “stackable devices” such as device mappers and drivers are the most important components involved. Using the “Linux Storage Stack Diagram”, Werner explains this architecture clearly with the help of several concrete examples. He explains the different areas of the VFS (block-based, network, stackable, pseudo and special purpose file systems) and also goes into detail about the functionality and application areas of various file systems such as ext4 or btrfs. Werner then shows how the resulting BIOs (block I/Os) are processed by the block layer and I/O schedulers (and optionally via stacked devices) before they finally reach the device drivers and physical storage devices. Join this talk and understand how storage works in Linux :-)

Speakers

Werner Fischer

Senior Linux Professional, Thomas-Krenn.AG

Werner studied computer and media security at Hagenberg Technical college and then worked at IBM for two years, where he wrote two Redbooks with colleagues. He has been working in the Linux area at Thomas-Krenn.AG since 2005. His previous roles include HA clusters, devops, 3rd level... Read More →

Wednesday September 18, 2024 16:05 - 16:45 CEST
Room 2.31 (Level 2)

Open Source 101

Audience Level Any

16:05 CEST

Open Source for the Greater Good - Sean Marcia, GitHub & Gia Coelho, Ruby for Good

Wednesday September 18, 2024 16:05 - 16:45 CEST

Hall C (Level 2)

In an era where technology increasingly influences every aspect of society, the potential for open source software to serve public interests and empower nonprofit organizations is immense. Yet, despite its transformative promise, the intersection of open source and the nonprofit sector remains underexplored and underutilized, particularly in projects aimed at public welfare beyond the tech community. I'll delve into the untapped synergy between open source initiatives and nonprofit organizations, exploring pathways for adoption, community support, funding, and sustainable growth. I will demystify the process of integrating open source solutions within nonprofit projects, highlighting practical strategies for organizations to not only adopt technology but also to contribute back to the open source ecosystem. I will also explore case studies of successful nonprofit open source projects, identifying key factors that contributed to their sustainability and impact. Finally, and possibly most importantly I'll explain about securing funding and support for open source projects focused on the public good, as well as partnerships, and community-driven development opportunities.

Speakers

Gia Coelho

Product Designer, Ruby for Good

Gia (she/her) is a Product Designer and lives in Washington, DC. She has been an active member of Ruby for Good since 2019, contributing as a core member to brand strategy development, product, UX, and visual design. Her passions include wildlife conservation, culinary adventures... Read More →

Sean Marcia

Open Source Enthusiast, GitHub

Sean Marcia, pronouns he, him, his, founded Ruby for Good in 2013 to fill the gap created by inaccessible and uneconomical technology solutions for nonprofits. He built an inclusive community of gooders—technologists determined to make the world a better place—who build open source... Read More →

Wednesday September 18, 2024 16:05 - 16:45 CEST
Hall C (Level 2)

Open Source Leadership Summit

Audience Level Any

16:05 CEST

Extract Dependency Data on Scale with Renovate - Sebastian Poxhofer, N26

Wednesday September 18, 2024 16:05 - 16:45 CEST

Room 0.96-0.97 (Level 0)

As modern platforms integrate an increasing array of tools, so too grows the complexity of software dependencies within your codebase. While mainstream dependencies like Docker images, Terraform and NPM packages are well-covered by existing solutions, what about the myriad obscure or custom tooling, perhaps even manually installed binaries lurking in your Dockerfiles? In this session, we'll unveil an Open Source solution designed to systematically extract data from diverse toolsets. Learn how to effectively catalog, track, and maintain these dependencies, eliminating blind spots and ensuring robustness in your development workflow.

Speakers

Sebastian Poxhofer

Senior SRE, N26

Sebastian Poxhofer is a seasoned Open Source maintainer and boasts a rich portfolio of projects including Renovate, TargetAllocator of the OpenTelemetry Operator, and more. With a that experience, he spearheads the development of Internal Developer Platforms in his daily endeavor... Read More →

Wednesday September 18, 2024 16:05 - 16:45 CEST
Room 0.96-0.97 (Level 0)

SupplyChainSecurityCon

Audience Level Any