LinuxCon + CloudOpen + ContainerCon NA 2015 has ended
Back To Schedule
Monday, August 17 • 3:20pm - 4:10pm
Are Today's FOSS Security Practices Robust Enough in the Cloud Era? - Lars Kurth, Citrix

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Recent vulnerabilities like Heartbleed and Shellshock have brought the security practices and track record of open-source projects into the spotlight. A project’s response to security issues has a major impact on how much risk end users are exposed to and how the project is perceived in the technology industry.

We will compare the security practices of key projects such as Linux, Docker, Xen Project, OpenStack and others. We will explore the trade-offs of different security practices, such as community trust, competing stakeholder interests, fairness and media coverage of vulnerabilities. Finally, we will explore the evolution of the Xen Project’s security process over the past 3 years as a case study. We will illustrate the trade-offs, pain points and unexpected issues we have experienced, to help other projects understand the pit-falls in designing robust security processes.

avatar for Lars Kurth

Lars Kurth

Director Open Source / Project Chairperson The Xen Project , Citrix Systems UK Ltd.
Lars Kurth is a highly effective, passionate community manager with strong experience of working with open source communities (Symbian, Symbian DevCo, Eclipse, GNU) and currently is the community manager for the Xen Project. Lars has 12 years of experience building and leading engineering... Read More →

Monday August 17, 2015 3:20pm - 4:10pm PDT

Attendees (0)