Loading…
or to bookmark your favorites and sync them to your phone or calendar.
Type: Software & Security clear filter
Tuesday, February 4
 

11:15am GMT

I inherited this project, and all I got was all these angry users : Jamie Tanna, Chief Blogger, jvt.me
Tuesday February 4, 2025 11:15am - 11:30am GMT
Hardwick Hub
Although I'd previously helped maintain more well-maintained projects, moving into this project, with one other overworked maintainer who was largely working in the very little spare time they had, I found that my work was cut out for me.

It didn't help that this was also one of the most widely used Go libraries in a fairly well used niche, and a very regularly discussed and recommended option, but the complexity of the domain led to a lot of difficulty in predicting the way that the library is used, and we (as maintainers) are actively driven by the use-cases from our users.

It's taken a couple of years of work to improve our triage process, documentation and re-testing old issues to see if they had been fixed in the meantime, and we've still got _so much_ more to do.

You'll hear some first-hand examples of the difficulty of being an Open Source maintainer, and some tips you can follow as a good Open Source citizen, to improve life for the maintainers of projects you use.

For seasoned maintainers, this will all be very familiar. For folks who are primarily users of Open Source, you'll learn some behind-the-scenes insights into what it's actually like behind the issues/PRs.

Speakers
avatar for Jamie Tanna

Jamie Tanna

Overwhelmed Maintainer + Chief Blogger, jvt.me
Jamie is a serial blogger and Open Sourcerer, who enjoys building things in the open to solve his needs, but with the added bonus that others often find it useful too!
Tuesday February 4, 2025 11:15am - 11:30am GMT
Hardwick Hub
  Software & Security, Keynote

11:35am GMT

Are You Not Entertained? Open Source Isn’t the Coliseum : Kat Cosgrove,Independent, Open Source Advocate and Jeremy Rickard, Microsoft, Principal Software Engineer
Tuesday February 4, 2025 11:35am - 12:15pm GMT
Hardwick Hub
What is the impact on contributors when maintainers fight, aren't welcoming, or don't lead inclusively? We are a community of doers who enable open source projects including Kubernetes, Prometheus, Envoy, and many others, but conflict between maintainers and contributors can negatively impact our projects and lead to resentment, drive contributors away, and in the worst of cases can escalate to code of conduct issues. When we maintainers don't have each other to lean on, what can we do? Sunlight is the best disinfectant and reflecting on these interactions can help us all do better and help our projects be more successful. In this talk, Kat and Jeremy will share some examples where communications went wrong, talk about the impact on contributors, and share a framework we can all use to do better.
Speakers
avatar for Kat Cosgrove

Kat Cosgrove

Open Source Advocate, Independent
Kat is a Developer Advocate focused on the growth and nurturing of open source through authentic contribution. In particular, her specialties are approachable 101-level content and deep dives on the history of technology, with a focus on DevOps and cloud native. She was the Kubernetes... Read More →
avatar for Jeremy Rickard

Jeremy Rickard

Principal Software Engineer, Microsoft
Jeremy Rickard is a principal software engineer at Microsoft where he works on the Azure Container Upstream team. He is currently a co-chair for SIG Release and serves on both the CNCF and the Kubernetes Code of Conduct Committees. He was also the Kubernetes 1.20 Release Lead.
Tuesday February 4, 2025 11:35am - 12:15pm GMT
Hardwick Hub
  Software & Security, Talk

12:20pm GMT

Who owns your customer data: Open source, digital sovereignty and your marketing stack
Tuesday February 4, 2025 12:20pm - 12:35pm GMT
Hardwick Hub
With a month's notice to transition to a new workflow for managing incoming security reports for our open source project, join us to learn how we implemented GitHub's built-in security reporting feature in the Mautic project, and explore the highs and lows of collaborating with researchers, contributors and our security team using this system.
Speakers
avatar for Ruth Cheesley

Ruth Cheesley

Project Lead, Mautic
Ruth is an Open Source advocate with over 18 years of experience using and contributing to many different projects.Having served on the Community Leadership Team of the Joomla! project and built a full-service digital agency, she now works as Project Lead for Mautic, supporting the... Read More →
Tuesday February 4, 2025 12:20pm - 12:35pm GMT
Hardwick Hub
  Software & Security, Talk

1:35pm GMT

Open Source Security: The Good, The Bad, The Vulnerable : Divya Mohan, Nelson Batsford, Mike Bursell and Aeva Black
Tuesday February 4, 2025 1:35pm - 2:15pm GMT
Hardwick Hub
Speakers
AB
avatar for Mike Bursell

Mike Bursell

Executive Director, Confidential Computing Consortium
Mike Bursell is the Executive Director of the Confidential Computing Consortium. He is one of the co-founders of the Enarx project (https://enarx.dev), and was CEO and co-founder of Profian, a start-up based on Enarx. He has previously served on the Governing Boards of the CCC and the Bytecode Alliance and currently holds advisory board roles with various start-ups. Previous companies include Red Hat, Intel and Citrix, with roles in... Read More →
NB

Nelson Batsford

Sales Engineer, SUSE
avatar for Divya Mohan

Divya Mohan

Principal Technology Advocate, SUSE
Divya is a Senior Technical Evangelist at SUSE, where she contributes to Rancher’s cloud native open source projects. She co-chairs the documentation for the Kubernetes & LitmusChaos projects & has previously worked extensively in the systems engineering space during her tenure... Read More →
Tuesday February 4, 2025 1:35pm - 2:15pm GMT
Hardwick Hub
  Software & Security, Panel

2:20pm GMT

Using European Open Source to build a Sovereign Multi-Cloud : Francisco Picolini, OpenNebula Systems, Open Source Community Manager
Tuesday February 4, 2025 2:20pm - 2:45pm GMT
Hardwick Hub
The European Commission has clearly identified open source as an strategic tool for bringing some balance to an EU cloud market currently dominated by a handful of non-EU hyperscalers. Part of that commitment comes through a series of ambitious, multi-million EU projects like the COGNIT project and the multi-country “Important Project of Common European Interest on Next Generation Cloud Infrastructure and Services” (IPCEI-CIS).

For the first time in the history of the European Union, it is the EU industry who will be leading large-scale open source projects aimed at building European strategic technologies.

In this talk we will explain in detail how specific European open source technologies are being brought together as part of some of those projects to start building Sovereign Multi-Cloud solutions that ensure interoperability and digital sovereignty for European users while preventing vendor lock-in in the cloud market, opening up competition in the emerging 5G/edge.
Speakers
avatar for Francisco Picolini

Francisco Picolini

Open Source Community Manager, OpenNebula Systems
Madrilenian with argentinian accent. Currently working on promoting a sovereign european cloud, OpenSource advocate, with some interest on Mechanical Keyboards and stuck in 90's music. Previously @Codemotion & @Mozilla. I believe in an Open Web.
Tuesday February 4, 2025 2:20pm - 2:45pm GMT
Hardwick Hub
  Software & Security, Talk

2:50pm GMT

The future of platform engineering : Paula Kennedy, Nicki Watt, Leena Mooneeram, Shweta Vohra
Tuesday February 4, 2025 2:50pm - 3:30pm GMT
Hardwick Hub
As platform engineering continues to gain traction within the tech industry, the role of internal developer platforms (IDPs) is becoming essential in streamlining application delivery. According to Gartner, by 2026, 80% of large software engineering organisations will have established platform engineering teams. This prediction is already materialising, with the latest State of DevOps Report by DORA revealing that 89% of organisations are using some form of internal developer platform.

However, as Gartner positions platform engineering at the peak of its hype cycle, it raises the question: what comes next? Will the industry face the "trough of disillusionment," or will platform engineering continue to evolve and mature? This panel discussion will explore the future trajectory of platform engineering, examining current trends and their implications for the industry.

Key questions we will address include:
- Where are current trends in platform engineering taking us?
- Will the market see a proliferation of new tools, or will we see more consolidation?
- Will organisations move toward a single, unified platform, or will multiple, specialised platforms emerge to meet different needs?

Join our expert panelists as they share their insights and discuss what the future holds for platform engineering.
Speakers
avatar for Shweta Vohra

Shweta Vohra

Enterprise Architect, Booking.com
Shweta is an Enterprise Architect and a Cloud Navigator! 🚀 As a seasoned Architect with a vast toolkit in Cloud, Platforms, Data, and ML technologies. She has spent over two decades crafting solutions across various domains and complexity levels. She is a frequent conference speaker... Read More →
avatar for Nicki Watt

Nicki Watt

CEO & CTO, OpenCredo
Nicki Watt currently serves as OpenCredo’s CTO and CEO, a pragmatic hands on software consultancy with specialisms in platform and data engineering as well as cloud native solution development. Her career has seen her wear many hats from Engineer, Systems & Technical Architects... Read More →
avatar for Leena Mooneeram

Leena Mooneeram

Senior Platform Engineer, Chainalysis
Leena is a Senior Engineer at Chainalysis, the Blockchain data platform. With a strong focus on reducing friction and cognitive load for Chainalysis engineers, Leena is at the coal-face of DevProd and DevEx daily. When she's not busy optimising workflows, Leena enjoys playing the... Read More →
avatar for Paula Kennedy

Paula Kennedy

COO, Syntasso
Paula is Co-Founder & Chief Operating Officer of Syntasso; previous roles include Senior Director at VMware Tanzu, Pivotal and Co-Founder & Chief Operating Officer of CloudCredo.With 20+ years experience in IT, Paula champions community, diversity and inclusion and has a range of... Read More →
Tuesday February 4, 2025 2:50pm - 3:30pm GMT
Hardwick Hub
  Software & Security, Panel

4:30pm GMT

As easy as PII - and that's GDPR, not GBBO : Mike Bursell, Confidential Computing Consortium, Executive Director
Tuesday February 4, 2025 4:30pm - 4:45pm GMT
Hardwick Hub
Regulators are coming for you if you're not looking after your customers' (or your employees'!) Personally Identifiable Information (PII). Luckily, Open Source, coupled with Confidential Computing, can give you a chance to be star baker. And while this session doesn't promise a Paul Hollywood handshake, let's at least try to avoid a soggy bottom to your security and risk policy.
Speakers
avatar for Mike Bursell

Mike Bursell

Executive Director, Confidential Computing Consortium
Mike Bursell is the Executive Director of the Confidential Computing Consortium. He is one of the co-founders of the Enarx project (https://enarx.dev), and was CEO and co-founder of Profian, a start-up based on Enarx. He has previously served on the Governing Boards of the CCC and the Bytecode Alliance and currently holds advisory board roles with various start-ups. Previous companies include Red Hat, Intel and Citrix, with roles in... Read More →
Tuesday February 4, 2025 4:30pm - 4:45pm GMT
Hardwick Hub
  Software & Security, Talk

4:50pm GMT

The State of Open Source in Numbers: Metrics, Trends, and Predictions : Avi Press, Brian Douglas, Dawn Foster, Jennifer Barth
Tuesday February 4, 2025 4:50pm - 5:30pm GMT
Hardwick Hub
In the past few years, the open source ecosystem has seen transformational innovation in the way we measure and analyze open source world - from development to community engagement, usage, economic impact, and beyond. In this panel, we gather the experts to discuss the state of open source from the hard numbers. We will discuss which indicators to watch, what we can learn from them, and what they might suggest about the future of open source as we know it.
Speakers
JB

Jennifer Barth

Founder, Symmetry
avatar for Brian Douglas

Brian Douglas

Head of Developer Experience, Linux Foundation
Brian Douglas is a Developer Advocate at GitHub where he works on increasing use of the GitHub API by iterating on the onboarding process and helping users with evergreen technical content.
avatar for Dawn Foster

Dawn Foster

Director of Data Science, CHAOSS
Dr. Dawn Foster works as the Director of Data Science for CHAOSS where she is also a board member / maintainer. She is co-chair of CNCF TAG Contributor Strategy and an OpenUK board member. She has 20+ years of experience at companies like VMware and Intel with expertise in community... Read More →
avatar for Avi Press

Avi Press

Founder and CEO, Scarf
Avi Press is a developer tool author, and functional programming language enthusiast, serving as a founder & CEO of Scarf. Avi loves thinking about and discussing how people can solve problems by more effectively sharing data, and how that applies to building a sustainable open-source... Read More →
Tuesday February 4, 2025 4:50pm - 5:30pm GMT
Hardwick Hub
  Software & Security, Panel

5:35pm GMT

TBC
Tuesday February 4, 2025 5:35pm - 6:00pm GMT
Hardwick Hub
EQUIP (Ensuring Quality in Psychological Support) is a World Health Organization & UNICEF project using Drupal to deliver mental health support training and assessments in low and middle-income settings with low connectivity. As of March 2024, EQUIP's digital platform had been used in 794 training programmes in 36 countries with 3,760 trainees resulting in 10,001 competency assessments.
This case study will show how EQUIP was built using an human-centred approach to product design and Drupal-based open source technology, to provide an open-access platform for NGOs around the world.
Tuesday February 4, 2025 5:35pm - 6:00pm GMT
Hardwick Hub
  Software & Security, Talk
 
Wednesday, February 5
 

11:15am GMT

Open Source Security Across the AI Continuum: Andrew Martin, ControlPlane, CEO
Wednesday February 5, 2025 11:15am - 11:30am GMT
Doddington Forum 1
Speakers
avatar for Andrew Martin

Andrew Martin

CEO, ControlPlane
Andrew has an incisive security engineering ethos gained building and destroying high-traffic web applications. Proficient in systems development, testing, and operations, he is at his happiest profiling and securing every tier of a cloud native system, and has battle-hardened experience... Read More →
Wednesday February 5, 2025 11:15am - 11:30am GMT
Doddington Forum 1
  Software & Security

11:15am GMT

Securing Your Software Supply Chain One Open Source Project at a Time : Lori Lorusso, Percona, Head of Community
Wednesday February 5, 2025 11:15am - 11:30am GMT
Hardwick Hub
Delivering software fast is one piece of the deployment puzzle, but delivering it securely is the glue that keeps your puzzle from falling apart. Software supply chain attacks are on the rise with security exploits directly targeting open source projects, central repositories, and software package managers. With 90% of enterprise companies using open source software in their builds no one is immune to these attacks and now more than ever the community is working hard to create safeguards and tooling to prevent potential attacks. The question then becomes who should you look to for best in class security protocols?

Thankfully the open source community is banding together and foundations like OpenSSF, CNCF and OWASP and companies are working to solve security problems. To help ensure a secure SDLC, these developer focused communities are investing time, energy, money and innovation in projects that provide security solutions. This talk will give a brief overview of some major attacks in the last decade, it will underscore the importance of securing your software supply chain at the source and will highlight a some open source projects that are on the market that are helping to close the security gaps.
Speakers
avatar for Lori Lorusso

Lori Lorusso

Head of Community, Percona
Lori has a passion and enthusiasm for working with the developer and open source community. She is a CNCF Ambassador, former CNCF Marketing Committee Chair, former Chair of the CDF Outreach Marketing Committee, program chair of cdCon 2023, and is active in the OpenSSF devrel committee... Read More →
Wednesday February 5, 2025 11:15am - 11:30am GMT
Hardwick Hub
  Software & Security, Keynote

11:35am GMT

Rust and Memory Safety : Rebecca Rumbul, Ethan Brierly, Tim Abell, David Haig, Ernest Kissiedu
Wednesday February 5, 2025 11:35am - 12:15pm GMT
Hardwick Hub
Speakers
TA

Tim Abell

Rustacean, Rust Workshop
EK

Ernest Kissiedu

The Rust Foundation
DH

David Haig

Founder, Tundra Sense Limited
EB

Ethan Brierley

Rust Software Engineer, TrueLayer
avatar for Rebecca Rumbul

Rebecca Rumbul

ED and CEO, Rust Foundation
Rebecca is the Executive Director and CEO of the Rust Foundation. She holds a PhD in Politics and Governance, and has worked as a consultant and researcher with governments, parliaments and development agencies all over the world, advocating for openness and transparency, and developing... Read More →
Wednesday February 5, 2025 11:35am - 12:15pm GMT
Hardwick Hub
  Software & Security, Panel

11:35am GMT

Securing AI Workloads: Building Zero-Trust Architecture for LLM Applications : Rohit Ghumare, Joinal Ahmed, Vinuja Khatode, Shivay Lamba
Wednesday February 5, 2025 11:35am - 12:15pm GMT
Doddington Forum 1
As businesses increasingly rely on LLM applications for their important functions, it becomes important to implement strong security measures to protect sensitive information and guarantee smooth operations. This session shows how to build a zero-trust security architecture for AI workloads using cloud native patterns. We'll explore how to implement AI Gateways that have strong authentication and authorization and include audit logging. Keep compliance and governance requirements while you secure model artifacts and implement runtime security and protect against prompt injection attacks.
Speakers
avatar for Shivay Lamba

Shivay Lamba

Developer Relations Engineer, Couchbase
Shivay Lamba is a software developer specializing in DevOps, Machine Learning and Full Stack Development. He is an Open Source Enthusiast and has been part of various programs like Google Code In and Google Summer of Code as a Mentor and is currently a MLH Fellow. He has also worked... Read More →
avatar for Joinal Ahmed

Joinal Ahmed

Head of AI, NTG
Joinal is an experienced Data Science professional with a interest on building solutions with quick prototypes, community engagements and influencing technology adoption. Brings strong technical understanding, experienced in managing cross functional teams of data scientists, data... Read More →
avatar for Rohit Ghumare

Rohit Ghumare

DevRel As Service, Founder
As a Google Developer Expert specializing in Google Cloud, I am a passionate DevOps Advocate and a dedicated Community Evangelist. I lead and nurture multiple communities across diverse platforms, fostering DevOps and Developer Relations awareness. My commitment to the open-source... Read More →
avatar for Vinuja Khatode

Vinuja Khatode

DevOps Engineer, TuneAI
Vinuja is an MSc student in computer science at the University of Leicester and a DevOps engineer at TuneAI. She has prior experience as a System Engineer at TCS and has been involved in MLOps and Cloud Native projects at LinuxWorld Informatics. Vinuja enjoys creating content around... Read More →
Wednesday February 5, 2025 11:35am - 12:15pm GMT
Doddington Forum 1
  Software & Security, Panel

1:15pm GMT

From Paper to Practice: Implementing NIST Cloud Security Guidance : Matt Turner , Andrew Martin and Ayse Vlok
Wednesday February 5, 2025 1:15pm - 1:55pm GMT
Hardwick Hub
In recent years, NIST has published several Special Publications focused on cloud application and network security. These documents provide comprehensive guidance and standards for security best practices. They address cloud security controls, Zero-Trust Architectures, and microservice security, while also examining the security implications of various cloud network topologies.

In this talk, Matt will summarize the key recommendations from these publications and outline practical steps for implementation. He'll also demonstrate how to maintain ongoing compliance with these controls using OSCAL and Lula.
Speakers
avatar for Andrew Martin

Andrew Martin

CEO, ControlPlane
Andrew has an incisive security engineering ethos gained building and destroying high-traffic web applications. Proficient in systems development, testing, and operations, he is at his happiest profiling and securing every tier of a cloud native system, and has battle-hardened experience... Read More →
AV
avatar for Matt Turner

Matt Turner

Software Engineer, Tetrate
Matt is a software engineer at Tetrate, where he loves sharing what he's learning with the whole community. He helps people understand Istio, Envoy, and other open source projects, as well as Tetrate's solutions for enterprise service mesh management. He's been doing Dev, sometimes... Read More →
Wednesday February 5, 2025 1:15pm - 1:55pm GMT
Hardwick Hub
  Software & Security, Panel

1:15pm GMT

Maintaining Open Source Software: Christopher Hoult, Sam Clements, Lorna Mitchell and Derick Rethans
Wednesday February 5, 2025 1:15pm - 1:55pm GMT
Doddington Forum 1
Speakers
avatar for Lorna Mitchell

Lorna Mitchell

Developer Experience, Redocly
Lorna is based in Yorkshire, UK; she is a technology leader and developer experience expert who is passionate about APIs and developer tools. She is also a published author and regular blogger, sharing her insights on a variety of tech-related topics. Lorna serves on the OpenUK board... Read More →
SC

Sam Clements

Akamai, Software Engineer
DR

Derick Rethans

The PHP Foundation
CH
Wednesday February 5, 2025 1:15pm - 1:55pm GMT
Doddington Forum 1
  Software & Security, Panel

2:00pm GMT

Productionising data pipelines with OpenSource : Tatiana Al-Chueyr Martins, Astronomer, Staff Software Engineer
Wednesday February 5, 2025 2:00pm - 2:15pm GMT
Doddington Forum 1
Over the past eight years, dbt-core has transformed SQL Analysts' workflows, enabling systematic development, modularization, reuse, testing, documentation, and version control.

Simultaneously, Apache Airflow emerged as the leading open-source orchestration tool. It allows data engineers to author, schedule, and monitor workflows using Python, scaling dynamic job scheduling and workflow-as-code.

By November 2024, both tools surpassed 50 million PyPI downloads.

This presentation demonstrates an end-to-end example of developing SQL transformations and productionizing them with these powerful open-source tools.
Speakers
avatar for Tatiana Al-Chueyr Martins

Tatiana Al-Chueyr Martins

Staff Software Engineer, Astronomer
Tatiana is a Staff Software Engineer at Astronomer and builds open-source tools to improve Apache Airflow developers' experience.In 2002, she started to study Computer Engineering at Unicamp, Brazil. Her first job was to build a 3D visualization software that helped surgeons plan... Read More →
Wednesday February 5, 2025 2:00pm - 2:15pm GMT
Doddington Forum 1
  Software & Security, Talk

2:00pm GMT

See it, Hack It, Sort It: How can OSS protect our AI enablers : Marcus Tenorio, ControlPlane, Security Engineering Manager
Wednesday February 5, 2025 2:00pm - 2:15pm GMT
Hardwick Hub
Your models are running, your clusters are purring, and everything seems ready to sail smoothly across the vast seas of AI. Everything’s good, right? Attacks targeting GPUs, especially those aimed at poisoning AI models during training and inference, represent a growing frontier—much discussed but rarely explored.
In this hands-on talk, we’ll dive deep into how GPUs can be attacked and, more importantly, how to defend against these threats. You’ll discover best practices and learn how open-source tools you already know—like Falco, Cilium, and others—can protect your precious models. Get ready for an adventure into the open field of GPU security in AI. See it, Hack It, Sort It.
Speakers
avatar for Marcus Tenorio

Marcus Tenorio

Security Engineering Manager, ControlPlane
People call me mart!Mart currently serves as an engineering manager on the security team at ControlPlane, where he enjoys managing various consultants who teach him every day how to break things and become a better manager and engineer.Mart began his journey in cybersecurity trying... Read More →
Wednesday February 5, 2025 2:00pm - 2:15pm GMT
Hardwick Hub
  Software & Security, Talk

2:20pm GMT

Containers Rule Everything Around Me : Rory McCune, Senior Security Advocate, Datadog
Wednesday February 5, 2025 2:20pm - 2:45pm GMT
Doddington Forum 1
Over the last 10 years Docker and Kubernetes have gone from niche projects to being a ubiquitous part of the technology landscape, operating in a vast number of companies and environments. But why were they so successful?

This talk will examine the sources of success that these technologies had, look at what seems like it should have been important but wasn't, and provide ideas for how future open source projects can set themselves up for success.
Speakers
avatar for Rory McCune

Rory McCune

Senior Security Researcher and Advocate, Datadog
Rory is a senior security researcher & advocate for Datadog who has extensive experience with Cyber security and Cloud native computing. In addition to his work as a security reviewer and architect on containerization technologies like Kubernetes and Docker he has presented at Kubecon... Read More →
Wednesday February 5, 2025 2:20pm - 2:45pm GMT
Doddington Forum 1
  Software & Security, Talk

2:20pm GMT

Secure Isolation and Trust Boundaries: A Crash Course for Engineers : Sal Kimmich, Confidential Computing, Open Source security
Wednesday February 5, 2025 2:20pm - 2:45pm GMT
Hardwick Hub
As our reliance on cloud-native infrastructure grows, so does the complexity of protecting sensitive data in multi-tenant and untrusted environments. This talk explores the core principles of secure isolation and trust boundaries to provide a practical understanding of how these concepts safeguard data during processing, enabling compliance, reducing risk, and building user trust. With a focus on real-world applications and accessible insights, this session demystifies the evolving security landscape and empowers engineers, policymakers, and technologists to collaboratively shape a more secure digital future.
Speakers
avatar for Sal Kimmich

Sal Kimmich

Open Source Security, Confidential Computing
Sal is a developer advocate for open source and passionate about helping engineers, ethical hackers and digital enthusiasts understand the complexity of modern software development. With over a decade of experience as building cloud-native machine learning pipelines in the healthcare... Read More →
Wednesday February 5, 2025 2:20pm - 2:45pm GMT
Hardwick Hub
  Software & Security, Talk

3:30pm GMT

Coming AI Threats and Fixes : Kris Bondi, Mimoto, CEO and Co-founder
Wednesday February 5, 2025 3:30pm - 3:45pm GMT
Hardwick Hub
Along with the benefits of AI are newly developed threats it enables. This talk spotlights new threats AI will create in 2025 as well as ways AI can be used to catch malicious activities.
Speakers
avatar for Kris Bondi

Kris Bondi

CEO and Co-founder, Mimoto
Kris Bondi is Mimoto CEO & Co-founder of Mimoto, an AI-powered cybersecurity company.In past lives, Kris has served as a crisis communications consultant to government entities, global not-for-profits, and some of the largest (and smallest) companies in the world.Kris is a long-time... Read More →
Wednesday February 5, 2025 3:30pm - 3:45pm GMT
Hardwick Hub
  Software & Security, Talk

3:30pm GMT

Networks are under AI pressure: Can Cilium and eBPF provide relief? Nico Vibert, Isovalent, Senior Staff Technical Marketing Engineer
Wednesday February 5, 2025 3:30pm - 3:45pm GMT
Doddington Forum 1
Kubernetes is the go-to platform for modern AI, but distributed machine learning imposes demanding requirements on networking, security, and observability. This talk explores how Cilium, powered by eBPF, addresses these challenges by delivering high-performance cloud networking, robust security, and deep observability, easing the strain on Kubernetes in AI-driven environments.
Speakers
avatar for Nico Vibert

Nico Vibert

Senior Staff Technical Marketing Engineer, Isovalent
Nico Vibert is a Senior Staff Technical Marketing Engineer at Isovalent – the company behind the open-source cloud native solution Cilium.Nico has worked in many different roles – operations and support, design and architecture, technical pre-sales – at companies such as HashiCorp... Read More →
Wednesday February 5, 2025 3:30pm - 3:45pm GMT
Doddington Forum 1
  Software & Security, Talk

3:50pm GMT

Building Secure Open Source Panel : Shilpi Bhattacharjee, Sonya Moisset, Didar Gelici
Wednesday February 5, 2025 3:50pm - 4:30pm GMT
Hardwick Hub
Speakers
avatar for Shilpi Bhattacharjee

Shilpi Bhattacharjee

Co-Founder, Kaizenteq Ltd
Shilpi is an international speaker, panelist. A Cloud Security and AI Security thought leader and advisor with over 13 years of expertise in business risk management leadership. She is the Co-Founder at Kaizenteq, an advisory and training company well known for their Globally Top... Read More →
avatar for Sonya Moisset

Sonya Moisset

Senior Security Advocate, Snyk
Sonya is a Senior Security Advocate and a lifelong traveler who lived in the Middle-East, North Africa and Asia. Always looking for new challenges – she made a career change from International Business Consultant in Tunisia, Saudi Arabia and Singapore to Full Stack Software Engineer... Read More →
DG

Didar Gelici

She was recognised as the DevSecOps Trailblazer at the Unsung Heroes awards 2020 and named one of the IT Security Guru's Most Inspiring Women in Cyber.Didar has held various roles in the Governance, Risk and Audit aspects of information security for 15+ years, in recent years she... Read More →
Wednesday February 5, 2025 3:50pm - 4:30pm GMT
Hardwick Hub
  Software & Security, Panel

3:50pm GMT

Taming the Chaos: What's Next in Engineering : Ron Efroni, Justin Cormack, Alex Mackenzie and Roxana Diaconescu
Wednesday February 5, 2025 3:50pm - 4:30pm GMT
Doddington Forum 1
Join us for "Taming the Chaos: What's Next in Engineering?" where top tech leaders discuss strategies to streamline development and anticipate future shifts in the realms of open source and AI. This panel, featuring luminaries like Justin Cormack (CTO of Docker), Michael Stahnke (VP Engineering at Flox and former VP Engineering at Circle CI & Puppet), Alex Mackenzie (AI & Infra investor at Tapestry) and Ron Efroni (Founder of Flox & Board Member at the NixOS Foundation), will explore effective ways to manage the growing complexity in tech stacks and highlight how AI, open source, and security trends are shaping the future of engineering.
Speakers
RD
AM
avatar for Justin Cormack

Justin Cormack

CTO, Docker
Justin is the CTO at Docker, and a member of the CNCF TOC. He has spent a lot of time working on security in the container ecosystem. He is a maintainer on the Notary project for container security.
avatar for Ron Efroni Rotman

Ron Efroni Rotman

CEO and Co-founder, Flox
Ron is the CEO and co-founder at Flox and a NixOS Foundation board member bringing Nix to the world.Ron’s journey began in first as a software engineer and later leading the development of large-scale field-operated products. A repeat founder, Ron dove into the world of developer... Read More →
Wednesday February 5, 2025 3:50pm - 4:30pm GMT
Doddington Forum 1
  Software & Security, Panel

4:35pm GMT

TBC : Stephen Augustus
Wednesday February 5, 2025 4:35pm - 5:00pm GMT
Doddington Forum 1
The OpenTelemetry (OTel) Operator is a great tool that helps make your life a little easier by managing OTel for you in your Kubernetes cluster, by:
Managing the deployment of the OpenTelemetry Collector
Managing the configuration of a fleet of OpenTelemetry Collectors via OpAMP integration
Injecting and configuring auto-instrumentation into your pods

But what happens when THINGS. DON’T. WORK??

In this talk, Adriana and Reese will cover:
* An overview of the OTel Operator
* Common installation issues
* Common auto-instrumentation issues
* Common OTel Collector deployment issues
* …and how to tackle them all

Attendees will walk away from this session with a better understanding of how they can leverage the Operator, and be empowered to use it with confidence.
Speakers
avatar for Stephen Augustus

Stephen Augustus

Technical Architect, CTO Office, Bloomberg L.P
Stephen is the Head of Open Source at Cisco, working within the Strategy, Incubation, & Applications (SIA) organization. Across the wider LF (Linux Foundation) ecosystem, Stephen has the pleasure of serving as a member of the OpenSSF Governing Board, the OpenAPI Initiative Business... Read More →
Wednesday February 5, 2025 4:35pm - 5:00pm GMT
Doddington Forum 1
  Software & Security, Talk

4:35pm GMT

Unifying Security Tools with OCSF and 60 lines of code : Spyros Gasteratos, OWASP, Security Engineer & Architect and Andrea Medda, Smithy-Security, Founding Engineer
Wednesday February 5, 2025 4:35pm - 5:00pm GMT
Hardwick Hub
In today’s world, security without tool and information harmonization is impossible.

Sadly and understandably, most security projects excel at doing one thing very well, however this is insufficient for most projects and organizations who need a combination of tooling in order to efficiently implement a cybersecurity strategy.

This is why we built and open-sourced Smithy.

Smithy is a framework/SDK and an optional execution engine that allows practitioners to orchestrate any security tool and translate its information to the popular security results standard OCSF. Translating outputs to OCSF format is not an easy process as the standard can be loose in some parts.

In this talk we will walk the audience through our context, why we built Smithy, how the SDK works and our design decisions. We’ll also talk about how we leveraged protobuf to extend the OCSF format and accelerate our development thanks to its strong types, code generation capabilities and built in versioning.

Further we will show participants what are the supported components, how to create a sample component and of course pitfalls, tips and tricks.

At the end of the talk, participants will be able to orchestrate any security tool that provides an api or some sort of way to gather its results into any cybersecurity programme, for free.
Speakers
avatar for Spyros Gasteratos

Spyros Gasteratos

Security Engineer & Architect, OWASP
Spyros has over 15 years of experience in the security world. Since the beginning of his career he has been an avid supporter and contributor of open source software and an OWASP volunteer. Currently he is interested in the harmonization of security tools and information and is currently... Read More →
avatar for Andrea Medda

Andrea Medda

Founding Engineer, Smithy-Security
Founding Engineer at Smithy-Security & ex Senior Systems engineer at Cloudflare in Devtools.I started my career working in very small italian companies, mainly for free.I discovered Go and fell in love with it and I took the very difficult decision to leave my land and relocate to... Read More →
Wednesday February 5, 2025 4:35pm - 5:00pm GMT
Hardwick Hub
  Software & Security, Talk
 
Share Modal

Share this link via

Or copy link

Filter sessions
Apply filters to sessions.
Tuesday, February 4
Wednesday, February 5
Doddington Forum 1
Doddington Forum 2
Grand Hall 1
Grand Hall 2
Hardwick Hub
  • AI Openness
  • Finance & Openness
  • Future of Open Source
  • Mobile & Communications
  • Open Data
  • Open Hardware
  • Party
  • Plenaries
  • Software & Security
  • Subject
  • Finance and Openness
  • Future of Open Source
  • Mobile and Communications
  • Software and Security
  • Popular