Free

Speck&Tech 31 "Open Security"

Event Information

Share this event

Date and Time

Location

Location

Impact Hub Trentino

95 Via Roberto da Sanseverino

38122 Trento

Italy

View Map

Event description

Description

Hallaback Speckers! It's time to get together again to talk about Technology and Speck!

The next meetup will be on Tuesday, February 26th, and will be named "Open Security"!
Tickets will go "on sale" on Tuesday, February 19th, at 7.30pm.

Below our awesome speakers:

1. CHRIS LAMB
You think you're not a target? A tale of three developers...

Chris Lamb

ABSTRACT: If you develop or distribute software of any kind, you are vulnerable to whole categories of attacks upon yourself or your loved ones. This includes blackmail, extortion or "just" simple malware injection… By targeting software developers such as yourself, malicious actors, including nefarious governments, can infect and attack thousands — if not millions — of end users. How can we avert this? The idea behind "reproducible" builds is to allow verification that no flaws have been introduced during build processes; this prevents against the installation of backdoor- introducing malware on developers' machines, ensuring attempts at extortion and other forms of subterfuge are quickly uncovered and thus ultimately futile. Through a story of three different developers, this talk will engage you on this growing threat to you and how it affects everyone involved in the production lifecycle of software development, as well as how reproducible builds can help prevent against it.

BIO: Currently Project Leader of the Debian GNU/Linux project and a member of Board of Directors for the Open Source Initiative, Chris is a freelance computer programmer, author of dozens of free- software projects and contributor to 100s of others. He has been official Debian Developer since 2008 and is currently highly active in the Reproducible Builds sub-project. In his spare time he is an avid classical musician with a penchant for baroque music. Chris has spoken at numerous conferences including LinuxCon China, HKOSCon, linux.conf.au, DjangoCon Europe, LibrePlanet, OSCAL, All Things Open, SCALE, Software Freedom Kosovo, #freenode Live, DebConf, FOSS'ASIA, as well as given guest lectures at New York University Tandon School of Engineering & Cambridge University and is looking forward to sharing his enthusiasm with the Speck&Tech community.


2. IVAN PASHCHENKO
Say No to the Dependency Hell

Ivan Pashchenko

ABSTRACT: Modern software projects cannot exist without open source software (OSS). It allows software projects to have rapid growth, credibility, and trust of their users. However, the wide adoption of OSS also brings huge security risks. Improper maintenance of OSS components may result in serious and costly security breaches, like the Equifax case, when the company lost 100K credit card profiles. In this talk, we will have an overview of the current problems regarding the management of third-party components of software projects, the ways how to address them, and I will also present you our methodology for identification of possible security issues coming from OSS dependencies. The methodology demonstrated its sustainability being used by SAP, a large international software development company.

BIO: Ivan is a PhD Candidate at the University of Trento, passionate about Open Source Software Security, Data Science, and Machine Learning. His research was a honoured silver medal on 2017 ACM/Microsoft Student Research Competition. He has work-related experience in Neural Networks, Machine Learning, Deep Learning, and Natural Language Processing as an Intern in Security Research Group at SAP Labs France, and in Application Security as a Leading Security Engineer in Bashneft, Russia. He developed several industrial and academic projects using Python and Java.


This event is sponsored by XPeppers:

XPeppers

This event is part of the ICT Days 2019 and proudly supported by the Department of Information Engineering and Computer Science of the University of Trento:

DISI

Curious to know more? Then follow our channels!



If you want to get notified about our events and cool things happening around Trento, subscribe to our Telegram channel!
Share with friends

Date and Time

Location

Impact Hub Trentino

95 Via Roberto da Sanseverino

38122 Trento

Italy

View Map

Save This Event

Event Saved