This event has ended. View the official site or create your own event → Check it out
This event has ended. Create your own
For More Information or to Register, Click Here
View analytic
Tuesday, October 6 • 14:00 - 14:50
Are today's FOSS Security Practices Robust Enough in the Cloud Era - Lars Kurth, Citrix

Sign up or log in to save this to your schedule and see who's attending!

Recent vulnerabilities like Heartbleed, Shellshock and Venom have brought the security practices and track record of open-source projects into the spotlight. A project’s response to security issues has a major impact on how much risk end users are exposed to and how the project is perceived in the technology industry.

We will compare the security practices of key projects such as Linux, Docker, Xen Project, OpenStack and others. We will explore the trade-offs of different security practices, such as community trust, competing stakeholder interests, fairness and media coverage of vulnerabilities. Finally, we will explore the evolution of the Xen Project’s security process over the past 3 years as a case study. We will illustrate the trade-offs, pain points and unexpected issues we have experienced, to help other projects understand the pit-falls in designing robust security processes.


Lars Kurth

Director, Citrix
Lars Kurth had his first contact with the open source community in 1997 when he worked on various parts of the ARM toolchain. This experience led Lars to become a passionate open source enthusiast who worked with and for many open source communities over the past 19 years. Lars contributed to projects such as GCC, Eclipse, Symbian and Xen and became the open source community manager for Xen.org in 2011 and later chairman of the Xen Project... Read More →

Tuesday October 6, 2015 14:00 - 14:50
Liffey Meeting 1