Home Blog

Hyperledger Foundation 2021 End-of-Year Update

In 2021, after six years of community building and expanding from two projects to 18 projects, to over 50 labs, 16 Special Interest and Working Groups, and over 200 members, Hyperledger became a Foundation. 

This newfound identity arches over all of its projects, labs, regional chapters, and community groups. Hyperledger Foundation is now leading the collective effort to advance enterprise blockchain technology and fulfill its mission to foster and coordinate the premier open source enterprise blockchain community.

At Hyperledger Foundation, being open is core to what we do. We’re here to lead an open, global and welcoming enterprise blockchain ecosystem—a community where no contribution is seen as too small or insignificant. Our foundation comprises organizations, developers, executives, students, teachers, government leaders, and more. It’s supported by the Technical Steering Committee, various working groups, special interest groups, and Meetup communities all across the globe, now numbering more than 80,000 participants. 

According to LFXInsights, there has been a 53% growth in the total commits in the last three years, and new code contributors increased by 37%. A total of 366 organizations from both large and small companies have made code commits since 2016. And the pace of activity among new community members is accelerating as commits by new contributors have increased by 286% in the last year.

Some of the largest and most important production enterprise blockchain projects today are built using Hyperledger technologies. They include:

Supply chain networks, like IBM and Walmart’s Food Trust (Hyperledger Fabric)Circulor’s mine to manufacturer traceability of a conflict-mineral for automobile sustainable supply chains (Hyperledger Fabric) Top trade finance platforms such as TradeLens (Hyperledger Fabric), which has more than 300 orgs, across 600 ports and terminals and has tracked over 42 million container shipments, with close to 2.2 billion events we.trade, who have already onboarded 16 banks across 15 countries to join their blockchain-enabled trade finance platform (Hyperledger Fabric)

Over 13 Central Bank Digital Currency production and pilots using multiple Hyperledger projects have been identified this year alone.

With this transition, Hyperledger Foundation also gained new leadership with the appointment of Daniela Barbosa as its new Executive Director. Barbosa is a seasoned veteran of the open source community with over 20 years of enterprise technology experience, including previously serving as Hyperledger’s Vice President of Worldwide Alliances, where she was responsible for the project’s community outreach and overall network growth.

New Growth in Hyperledger Technologies 

According to research from Blockdata, Hyperledger Fabric is used by more of the top 100 public companies in the world than any other blockchain platform. 

Hyperledger-based networks are used by some of the largest corporations around the world, including more than half of the companies on the Forbes Blockchain 50, a list of companies with revenue or a valuation of at least $1 billion that lead in employing distributed ledger technology.

As an ever-growing library of case studies shows, Hyperledger technologies are already transforming many market spaces, including supply chains, trade finance, and healthcare. Hyperledger technologies are used in everything from powering global trade networks and supply chains to fighting counterfeit drugs, banking “unbanked” populations, and ensuring sustainable manufacturing. 

In addition, Hyperledger technologies are being applied to a number of new markets and business models. These include digital identity and payments, Central Bank Digital Currencies (CBDCs), and NFTs like Damien Hirst’s The Currency project and DC Comics powered by Palm NFT with a near-zero carbon footprint using Hyperledger Besu.

Digital Identity 

Hyperledger technologies are being adopted to put individuals in charge of their own identity. People often need to verify their status, prove a birthdate, board a plane, comply with vaccine mandates, prove their education, or access money. Leveraging Hyperledger Aries and Hyperledger Indy, organizations worldwide are reshaping how digital information is managed and verified to increase online trust and privacy. These digital identity solutions create verified credentials that are effective, secure, accessible, and privacy-preserving. 

The Aruba Health App makes it easy for visitors who have provided required health tests to the Aruba government to share a trusted traveler credential — based on their health status — privately and securely on their mobile device. Launched initially as a trial, the Aruba Health App is built using Cardea, an open-source code base that has since been contributed to the Linux Foundation Public Health (LFPH) project. Cardea leverages Hyperledger Indy, Hyperledger Aries, and Hyperledger Ursa.IDUnion addresses the demand for migrating centralized identity systems towards decentralized self-sovereign management of digital identities for people, organizations, and machines. The service has 39 cross-sector partners building production-level infrastructure to verify identity data in finance, manufacturing, the public sector, and healthcare. IDunion has launched a Hyperledger Indy test network, built components for allocating, verifying, managing digital identities, and more. This consortium includes Hyperledger member companies Siemens, Bosch, Deutsche Telecom, and others.The International Air Transport Association IATA Travel Pass, built in partnership with Evernym using Hyperledger Indy and Hyperledger Aries, is a mobile app that helps travelers store and manage their verified certifications for COVID-19 tests or vaccines. MemberPass, built on Hyperledger Indy by Bonifii, is the first global digital identity ecosystem for credit unions and their members. It provides consumer identity while protecting personal information. Adopted by more than seven credit unions and counting, 20,000+ credentials issued. 

Digital Currency

Blockchain technology has already helped rewrite some of the rules for currencies and payments. Governments worldwide are now moving towards Central Bank Digital Currencies (CBDCs) or digital forms of their official currency. These will give central banks a more flexible, more secure form of their national currencies and lower the risks from alternative cryptocurrencies. Backed by a central bank, any CBDC, whether developed for wholesale or retail use, will be legal tender with the stability that regulation confers.

Governments are moving carefully, but many of the early projects are using Hyperledger platforms. The goals range from modernizing payment processes to removing barriers and costs associated with back-end settlement to boosting financial inclusion.

This fireside chat from Hyperledger Global Forum on CBDCs by experts from Accenture and DTTC offers a great overview of the benefits and different approaches to these new currencies and a look at the current landscape of CBDC research and experimentation across the globe.

The Eastern Caribbean Central Bank launched DCash, built on Hyperledger Fabric, as a mobile phone app for person-to-person and merchant payments. ECCB stated at an OECD event in 2020 that it selected Hyperledger Fabric because of its strong security architecture (a private permissioned blockchain with strong identity management) and open source code, contributing to its security, flexibility, and scalability, among other desired attributes.The National Bank of Cambodia created Bakong, a fiat-backed digital currency, using Hyperledger Iroha to promote its national currency use, giving the large percentage of its population without bank accounts a mobile payment system and cutting costs for interbank transfers.Additionally, a mix of retail and wholesale CBDCs trials using Hyperledger Besu has helped several other countries, including Thailand and Spain, to advance planning for new digital fiat currencies.

These efforts are made possible by the dozens of enterprises that support the Hyperledger Foundation. To learn how your organization can get involved, click here

The post Hyperledger Foundation 2021 End-of-Year Update appeared first on Linux Foundation.

State of FinOps Survey 2022: Built by and for the FinOps Community

The FinOps Foundation team is beyond excited to launch the 2022 State of FinOps Survey. Yes, there are plenty of self-published industry reports out there, but what makes this one different is that it’s built by and for the FinOps community.

Why do we create the State of FinOps each year?

FinOps, the operating model for cloud finance management, is a fundamental practice for organizations leveraging the cloud to align those costs with business value and outcomes. The FinOps Foundation community represents a broad spectrum of practitioners, including many leaders and forerunners in the space. Annual surveys help gather a snapshot of the current activities and perspectives across the community to deepen the understanding and surface trends. 

The results of each State of FinOps Survey become a report that delivers insights and benchmarks that helps us inform the roadmap of how the Foundation can improve the educational materials to advance practitioners and their practices. The more we understand how our community and practitioners are growing, maturing their practices, and the challenges they are struggling with, the richer the community projects can support everyone.

Evolving from the previous year

The first State of FinOps Survey and Report was released in 2021, creating a report template, data visualization style, and a first test at how our information and insights would help the community. We found success in gaining constructive analyst, press, and community feedback. 

In our first year:

We created the industry’s first community-focused and led survey and report on the FinOps disciplineCommunity members held us accountable for achieving key outcomes that we promised would be built from the report’s insightsWe strengthened our FinOps Framework by adding user-generated projects and stories by practitioners of various skill levels and from all types of organizations across the world

For the 2022 report, we focused on ways to incorporate even more practitioner and leadership feedback from the beginning. We also made a significant investment into the academic and data integrity of the report.

As FinOps practitioners and leaders worldwide look to this resource as a means of guiding and building their practices, we needed to ensure that the body of work contained a blend of academic merit and data-driven depth.

Doubling down on community and practitioner involvement

We created several working groups of staff and FinOps practitioners to help us build a better survey and report for 2022. These groups looked at the 2021 report and gave us constructive feedback to help us create a better asset and resource for the community.

“By refining the survey for 2022 on community feedback, it can be used for multiple areas and projects by the community in the coming year – it will be exciting to understand all the different perspectives in the FinOps category.” Joe Daly, Director of Community, FinOps Foundation

Leveraging Linux Foundation’s research team

A majority of the FinOps Foundation staff have FinOps experience, but we were honest with ourselves about needing more data analysis help with this year’s survey and report. Fortunately, we were able to utilize the expertise of the Linux Foundation’s newly established Research Team.

The team was with us from the outset, where they integrated with FinOps experts so that they could understand more about our community-centric approach.

“Designing the State of FinOps 2022 survey was a truly collaborative effort. It was clear from the beginning that establishing a Working Group to aid in the survey instrument’s design was necessary to generate the kind of data that would add value across the FinOps ecosystem.” Stephen Hendrick, VP Research

With LF Research’s help and support, we also decided to translate the 2022 survey to engage FinOps practitioners in French-speaking regions, who represent a significant demographic of our community. LF Research helped to achieve the French language translation as a new element in this year’s research effort to make the survey more accessible and inclusive.

We are very thankful for their guidance in structuring our survey and look forward to their expertise once we start analyzing results and building the 2022 report.

Building a long-lasting resource for our community

We learned a lot of lessons from the 2021 survey and report. One of the biggest lessons was an internal one in that this survey collects such a variety of information and data. It informed us that we could go one of two ways with this research tool: keep building one-off reports, or do the work and build something long-term for the community.

Our community leaders advised us that we needed to focus more on generating annual benchmarking and insights based on key practices. They also helped us iron out the method and approach to our questions to align more with the framework to get the best data possible from the survey.

Our goal is to have something more than another data report to add to the Internet. We want to create a valuable tool for FinOps practitioners and partners to improve their practice. We want this tool to be informed and built by the community, for the community.

Ideal outcomes from the 2022 survey

With the survey into its first weeks of collecting data, we’re very interested in measuring and understanding the following:

Are practitioners maturing their FinOps practices? What FinOps “maturity level” do they self-identify as?What phase in the FinOps lifecycle are practitioners operating for specific capabilities, how did they get there, and what are they planning to do next?What are the benchmarks practitioners use for FinOps capabilities?How do practitioners measure their success when implementing their FinOps capabilities?

We’re looking forward to seeing how the results inform our hypotheses and questions.

Building upon this report with open source standards

When done right, it turns out you can use open source software standards to encourage contribution and community even with a topic like cloud financial management. We’re very proud to find a way to work closely with our community while championing Linux Foundation open source principles.

Do you know someone who qualifies in taking the State of FinOps Survey? If so, feel free to share it with them. The survey is open, and we look forward to learning more about the FinOps community and industry to help strengthen it.

The post State of FinOps Survey 2022: Built by and for the FinOps Community appeared first on Linux Foundation.

In 2021, the Linux Foundation Drove Innovation Across the Technology Spectrum and in Key Industry Verticals

Vertical industries are under constant pressure to innovate, facing the challenges of supply chains, diverse customer requirements, regulations, and a lack of talent to do everything leadership may envision in any complex business. 

These industries understand that their ownership of intellectual property for parts of their software stack is limiting business opportunities and expensive to develop and maintain. To accelerate adoption, openly working together on common infrastructure components presents more opportunities for business growth.

Our members in the automotive, motion picture, fintech, telecommunications, energy, and public health verticals have transformed their business processes and assets into software-defined assets. They are now building strategic frameworks that give them a competitive edge that only open source can provide. In 2021, verticals and new members continued innovating with newly formed communities in the agriculture industry and AAA-class 3D engines for entertainment and simulation.

While all of these vertical industries have unique open source projects and communities, they also share a common thread: All realize that open collaboration presents opportunities to reduce costs, cut time to market, increase quality, and open new areas of competition. The ability to achieve these results on a collective basis pushes innovation forward across respective industries.

Gaming and Simulation: Open3D Foundation and Open3D Engine

The Linux Foundation welcomed the Open 3D Foundation into its community of families in July of 2021. The first project in the foundation was the Open 3D Engine known as O3DE. Amazon Web Services donated it under an Apache 2.0 and MIT licensing model. The mission of the Open 3D Engine is to make an open source, fully-featured, high-fidelity, real-time 3D engine for building games and simulations available to every industry.

Since its inception, it has raised $2.7 million in commitments from 26 partners in over two years. It has received signed commitments from a range of companies such as Adobe, Intel, AWS, Niantic, Huawei, SideFX, HERE, and others.

The foundation is focused on industries that utilize 3D technologies. This includes video games, automotive, simulation, robotics, energy, real estate, training, film, special effects, machine learning, aerospace, and many other verticals.

Since its inception, it has grown to over 3600 stars, 1100 forks of the repository, 1,500 Discord users, and 500+ active members are online. It has increased to over 130 authors of code, 7000 file changes, 2,000,000 changes to lines of code, and a vibrant & active self-sustaining support community averaging 500 messages & minutes per day.

Motion Pictures and Visual Effects: The Academy Software Foundation

The Academy Software Foundation (ASWF) has continued to make an impact on the open source technologies that empower the motion picture and visual effects industries. To date, ASWF boasts 32 members and hosts 14 projects and working groups. 

Key achievements in 2021 include:

MaterialX being contributed as a project by Lucasfilm. MaterialX originated at Lucasfilm in 2012. It has grown into the central format for material description at Industrial Light & Magic (ILM) since the production of Star Wars: The Force Awakens.

The launch of the ASWF Assets Repository that gives open communities access to production-grade digital assets for testing, demonstration, and education purposes.

The launch of OpenColorIO v2.0, which is the output of three years in development and boasts numerous feature and performance improvements. In addition, a growing number of vendors are adopting their products and services, which is cementing OpenColorIO as an industry standard.

ASWF has seen the collaboration and sustainability of each of the projects and working groups it hosts increase, with each project seeing increases in organizational diversity and contributions in 2021 compared to the year before joining the ASWF.

ASWF looks forward to 2022 as it focuses on addressing new technology spaces such as virtual production.

Automotive Grade Linux (AGL)

Over the last decade, the Linux Foundation worked with industry leaders like Toyota and others to launch Automotive Grade Linux (AGL). AGL was established to build a common open source software platform to eliminate the fragmentation plaguing the automotive industry. AGL is the only organization with a mission to address all in-vehicle software, including infotainment, instrument cluster, telematics, heads-up display, advanced driver assistance systems (ADAS), and autonomous driving.

The AGL community is reducing that fragmentation by combining the best of open source to create the AGL Unified Code Base (UCB), a single, shared, open source software platform for the entire industry. The UCB includes an operating system, middleware, and application framework and can serve as the de facto industry standard for infotainment, telematics, and instrument cluster applications. Sharing an open source platform allows for code reuse and a more efficient development process as developers and suppliers can build their solution once and deploy that same solution for multiple automakers. 

Supported by eleven major automotive manufacturers, including the top three producers by worldwide volume (Volkswagen, Toyota, Daimler), AGL is deployed  in production vehicles today:

Toyota’s AGL-based infotainment system is now in Toyota and Lexus vehicles globally.The 2020/2021 Subaru Outback and Subaru Legacy use open source software from the AGL UCB for the Subaru Starlink infotainment platform.Mercedes-Benz Vans is using AGL as a foundation for a new onboard operating system for its commercial vehicles.

Amazon AWS joined AGL as a Platinum member in January 2021 and is leading AGL initiatives around IoT and Connected Car. 

In early 2021, AGL announced a new Expert Group for Container and Service Mesh, led by Amazon AWS. The Container and Mesh Expert Group are developing an in-vehicle container solution for AGL and creating a service mesh and orchestration framework that can be deployed as part of AGL.

The IVI Production Readiness Expert Group, led by Toyota, has made significant progress in 2021. This EG is focused on bringing AGL closer to a production-ready state. By early 2022, major code contributions are expected from Toyota on Flutter for embedded IVI, a new cutting edge UI and App development framework for infotainment systems. This will allow manufacturers to cut the development time and cost of deploying innovative new applications in the vehicle. 

The Virtualization EG, led by Panasonic, has been busy working on cutting-edge VirtIO technology. This allows consolidation of vehicle cockpit systems such as IVI, Instrument Cluster, and Heads-Up-Display to run on a single processor. It also enables innovative use cases such as using Android for infotainment and AGL for Instrument Cluster on a single virtualized CPU. The consolidated cockpit is a vision of the future, and it’s being developed today at AGL. 

AGL also had two milestone platform releases this year, Unified Code Base (UCB) 11.0 Kooky Koi in February and 12.0 Lucky Lamprey in July. These releases included several updates to graphics, audio, speech recognition, application and security frameworks, web apps, and Chromium. Both releases are based on the Yocto 3.1 Long-Term-Support board support packages.

New Industry Vertical‭: ‬Agriculture

In May 2021, the Linux Foundation announced the launch of the AgStack Foundation, the open source digital infrastructure project for the world’s agriculture ecosystem. Thirty-three percent of all food produced is wasted, while nine percent of the people in the world are hungry or malnourished. These societal drivers are compounded with legacy technology systems that are too slow and inefficient and can’t work across the growing and more complex agricultural supply chain. AgStack Foundation will improve global agriculture efficiency by creating, maintaining, and enhancing free, reusable, open, and specialized digital infrastructure for data and applications. AgStack will use collaboration and open source software to build the 21st-century digital infrastructure that will be a catalyst for innovation on new applications, efficiencies, and scale.

AgStack consists of an open repository to create and publish models, free and easy access to public data, interoperable frameworks for cross-project use, and topic-specific extensions and toolboxes. It will leverage existing technologies such as agriculture standards (AgGateway, UN-FAO, CAFA, USDA, and NASA-AR); public data (Landsat, Sentinel, NOAA and Soilgrids; models (UC-ANR IPM), and open source projects like Hyperledger, Kubernetes, Open Horizon, Postgres, Django and more.

Founding members and contributors include leaders from both the technology and agriculture industries and across sectors and geographies. Members and partners include Agralogics, Call for Code, Centricity Global, Digital Green, Farm Foundation, farmOS, HPE, IBM, Mixing Bowl & Better Food Ventures, NIAB, OpenTeam, Our Sci, Produce Marketing Association, Purdue University / OATS & Agricultural Informatics Lab, the University of California Agriculture and Natural Resources (UC-ANR) and University of California Santa Barbara SmartFarm Project.

New Industry Vertical‭: ‬AI Voice Technologies

In June, the Linux Foundation announced the Open Voice Network, an open source association dedicated to advancing open standards that support the adoption of AI-enabled voice assistance systems. Founding members include Target, Schwarz Gruppe, Wegmans Food Markets, Microsoft, Veritone, and Deutsche Telekom.

Organizations are beginning to develop, design, and manage their own voice assistant systems independent of today’s general-purpose voice platforms. This transition is being driven by the desire to manage the entirety of the user experience — from the sound of the voice, the sonic branding, and the content — to integrating voice assistance into multiple business processes and brand environments from the call center, to the branch office and the store. Perhaps most importantly, organizations know they must protect the consumer and the proprietary data that flows through voice. The Open Voice Network will support this evolution by delivering standards and usage guidelines for voice assistant systems that are trustworthy, inclusive, and open.

Voice is expected to be a primary digital interface going forward and will result in a hybrid ecosystem of general-purpose platforms and independent voice assistants that demand interoperability between conversational agents of different platforms and voice assistants. Open Voice Network is dedicated to supporting this transformation with industry guidance on the voice-specific protection of user privacy and data security.

Much as open standards in the earliest days of the Internet brought a uniform way to exchange information and connect with any site anywhere, the Open Voice Network will bring the same standardized ease of development and use to voice assistant systems and conversational agents, leading to huge growth and value for businesses and consumers alike. Voice assistance depends upon technologies like Automatic Speech Recognition (ASR), Natural Language Processing (NLP), Advanced Dialog Management (ADM), and Machine Learning (ML).

The Open Voice Network will initially be focused on the following areas:

Standards development: research and recommendations toward the global standards that will enable user choice, inclusivity, and trust.Industry value and awareness: identification and sharing of conversational AI best practices that are both horizontal and specific to vertical industries, serving as the source of insight and value for voice assistance.Advocacy: working with and through existing industry associations on relevant regulatory and legislative issues, including those of data privacy.

These efforts are made possible by the dozens of enterprises that support  Open3D Foundation, ASWF, AGL, AgStack, and Open Voice Network 

To learn how your organization can get involved with Open 3D Foundationclick here

To learn how your organization can get involved with ASWFclick here

To learn how your organization can get involved with AGLclick here

To learn how your organization can get involved with AgStackclick here

To learn how your organization can get involved with Open Voice Networkclick here

The post In 2021, the Linux Foundation Drove Innovation Across the Technology Spectrum and in Key Industry Verticals appeared first on Linux Foundation.

EdgeX Foundry Announces Jakarta, the Project’s First Long Term Support Release

Community debuts Developer Badge Program to recognize, reward  developer contributions as it begins plans for Spring 2022 release, codenamed ‘Kamakura’

SAN FRANCISCODecember 1, 2021EdgeX Foundry, a Linux Foundation project under the  LF Edge project umbrella, today announced the release of version 2.1 of EdgeX, codenamed ‘Jakarta.’  The project’s ninth release, it follows the recent Ireland release, which was the project’s second major release (version 2.0). Jakarta is significant in that it is EdgeX’s first release to offer long term support (LTS). 

Long Term Support

“Only a few open-source projects offer long term support; the rapid change of open source projects and the effort needed to LTS is significant,” said Arpit Joshipura, general manager, Networking, Edge and IoT, at the Linux Foundation. “By including LTS, EdgeX demonstrates it understands the needs of the operational technology (OT) user base, and how products in this space must work and operate over longer periods of time than traditional IT solutions,” said Arpit Joshipura. “This is a big milestone for any open source community, and we are incredibly proud of EdgeX Foundry for this achievement.”

“Our Jakarta release is a stabilization release,” said Jim White, the EdgeX Foundry Technical Steering Committee  (TSC) Chairman and co-founder of the project.  “As such, it is our project community’s pledge to adopters that EdgeX offers you a stable version of the platform that you can expect the community to stand behind and support for a period of two years.  We stand with you in support of EdgeX in real world, commercial deployments of the platform.”

 The EdgeX long term support policy states that the community will work as quickly as possible and give “best effort and development priority to fix major flaws as soon as possible.”  Major flaws by the project are defined as 

bugs causing the system or service to crash and where there is no work around for the functionbugs for a feature/function that does not work and there is no work around for the functiona security issue deemed a critical or high-level CVE (per CVSS)

The project has further stipulated in its LTS policy that “no new major functionality (at the discretion of the TSC) will be added” to the LTS version after the release happens.

More information about the Jakarta release, including a list of new features, can be found here: https://wiki.edgexfoundry.org/display/FA/Jakarta

EdgeX Developer Badge Program

As a part of this release cycle, EdgeX  also announced a new EdgeX Developer Badge program.  EdgeX has created the Developer Badge program to thank those making initial impacts to the project by providing  something that they can use to highlight their efforts and volunteerism on social media platforms.   Contributors have started receiving an official digital badge (award through Credly) when 

they make their first contribution (their first GitHub Pull Request is accepted by the project and merged into one of the project’s code repositories)they fix two documented bugs of the project

Additional badges for other work may be awarded by the community in the future.

Kamakura Release – Spring 2022

The next EdgeX release, codenamed “Kamakura,” is set for Spring 2022.  The community has held its semi-annual planning session to lay out the goals and objectives of this release.  Kamakura is likely to be another dot-release that will again be backward compatible with all EdgeX 2.x releases (Ireland and Jakarta).  Major additions currently under consideration and being developed by the community include:

Initial north to south message bus.  Improved security secrets seeding and allowing for delayed service starts.Metrics collection. .Dynamic device profiles.  Better (native) Windows supportImprove testing – including real hardware testingA second version release of the EdgeX Command Line Interface (CLI) which,  compatible with EdgeX v2.x.

 Learn more about this release on the project’s Wiki site.

About the Linux Foundation

Founded in 2000, the Linux Foundation is supported by more than 1,000 members and is the world’s leading home for collaboration on open-source software, open standards, open data, and open hardware. Linux Foundation’s projects are critical to the world’s infrastructure including Linux, Kubernetes, Node.js, and more.  The Linux Foundation’s methodology focuses on leveraging best practices and addressing the needs of contributors, users and solution providers to create sustainable models for open collaboration. For more information, please visit us at linuxfoundation.org.

 ###

The Linux Foundation has registered trademarks and uses trademarks. For a list of trademarks of The Linux Foundation, please see our trademark usage page: https://www.linuxfoundation.org/trademark-usage. Linux is a registered trademark of Linus Torvalds. 

The post EdgeX Foundry Announces Jakarta, the Project’s First Long Term Support Release appeared first on Linux Foundation.

Support OLF and Possibly Win a Prize

OLF, previously known as Ohio Linuxfest, has been one of the most popular community-run open source events for nearly two decades. The event brings together individuals from around the country and world to gather and share information about Linux and open source software. This year’s event takes place December 3-4 in Columbus, Ohio, and The Linux Foundation is proud to be one of the event sponsors.

Even if you cannot join us in Columbus, you can help support the event and community by entering an online raffle fundraiser. You can purchase tickets for the raffle and choose the prize you would like to win. The raffle will take place at 7 pm Eastern on December 4. The Linux Foundation has donated the following prizes to the raffle:

  • Entry-level certification exam package including the Linux Foundation Certified IT Associate (LFCA) and Kubernetes & Cloud Native Associate (KCNA) exams
  • Kubernetes Fundamentals training course plus the Certified Kubernetes Administrator (CKA) exam
  • Open Source Management and Strategy seven-course training series

Prizes from other sponsors include a Raspberry Pi kit, original penguin artwork, and more. Purchase your tickets today and help support this great community event!

Top one-line Linux commands, customize VM images, and more tips for sysadmins

Check out Enable Sysadmin’s top 10 articles from November 2021.

Read More at Enable Sysadmin

Linux Foundation: Defending the Global Software Supply Chain from Cyberattacks in 2021

Attackers are increasingly targeting software supply chains (the processes, repositories, and toolchains used for developing and delivering software). The European Union Agency for Cybersecurity, ENISA, estimated in “Threat Landscape for Supply Chain Attacks” that there would be four times as many software supply chain attacks in 2021 as compared to 2020. The report states due to “…more robust security protection that [many] organizations have put in place [today], attackers successfully shifted towards suppliers.”

Governments around the world have noted and responded to this growing risk to the software supply chain. In May 2021, the US released an Executive Order on Improving the Nation’s Cybersecurity to enhance software supply chain security, including providing software purchasers with a Software Bill of Materials (SBOM). Similar efforts are underway around the world.

In 2021, our communities rose to the challenge of providing tools and best practices for the security hardening of the global software supply chains. Our efforts included launching Open Source Security Foundation (OpenSSF) as a funded project, expanding Let’s Encrypt — the world’s largest certificate authority, ensuring the ISO standardization of SPDX as the SBOM standard, directing funds to identify and fix vulnerabilities in critical open source software, and building new training curriculum to improve secure coding practices.

Community Highlight: OpenSSF

The Open Source Security Foundation (OpenSSF) was elevated to a funded project at the LF in October 2021. The OpenSSF is a cross-industry collaboration that brings together leaders to improve the security of open source software (OSS) by building a broader community, targeted initiatives, and best practices. The OpenSSF premier members include: 1Password, AWS, Cisco, Citi, Dell Technologies, Ericsson, Facebook, Fidelity, GitHub, Google, Huawei, Intel, IBM, JP Morgan Chase, Microsoft, Morgan Stanley, Oracle, Red Hat, Snyk, and VMWare.

The OpenSSF began many initiatives in 2021, including:

Security Scorecard: automatically assesses many security-related heuristics to help estimate project securityAllstar: an automated tool to enforce some security policiesSecurity Reviews: collects security reviews of OSSSecurity Metrics Dashboard: provides easy access to security metrics/info about OSS projectsOSS Vulnerability Guide: a guide to coordinated vulnerability disclosure for open source software projectsOpen Source Vulnerability (OSV) SchemaSupply-Chain Levels for Software Artifacts (SLSA): security framework for software security and supply chain integrityPackage Feeds / Package Analysis: analyzes uploaded packages to identify potentially malicious ones

The OpenSSF also continued to refine its existing work, including its free courses on how to develop secure software (over 4,000 registrants combined) and the CII Best Practices Badge Program (over 4,000 participating projects and over 600 passing projects). 

Shepherding Software Standards

The Linux Foundation strongly supports efforts to build and drive the adoption of open source standards and infrastructure. These efforts include:

SPDX — an international standard for representing the metadata for SBOMs (ISO/IEC 5962)OpenChain — a standardized process management approach to identify inbound, internal, and outbound open software. It is primarily designed for compliance and has clear secondary use cases in security ( ISO 5230) Compliance tooling from Automating Compliance Tooling (ACT) projects (including OSS Review Toolkit, FOSSology, Tern), and the OpenChain reference workflow, being extended to add new use cases. Training on software transparency topics, including “Generating an SBOM

We are thankful for all the participants in the SPDX community. Special thanks go to Gary O’Neall for his work developing the SPDX tooling; this work made it easier for developers across the ecosystem to adopt SPDX in their workflows. Special thanks also go to Steve Winslow and Jilayne Lovejoy for their tireless efforts in maintaining the SPDX License List over the past ten years. The SPDX standard continues to evolve thanks to the tireless efforts of many talented developers, including Alexios Zavras, William Bartholomew, Thomas Steenbergen, and Nisha Kumar.

Kate Stewart, VP of Dependable Systems, The Linux Foundation

Establishing Projects and Conferences to Improve Security

In addition to the projects listed earlier, the LF funds various projects to improve open source security. Some notables among them include:

sigstore — development work on this technology suite to enable developers to sign software artifacts securely. Signing materials are stored in a tamper-resistant public log. (The project is managed by Google, Red Hat, and Purdue University)Alpine Linux — vulnerability processing for this security-oriented, lightweight Linux distribution.Alpine Linux, Arch Linux — reproducible builds for these two Linux distributions.OpenSSH, RPKI — development of infrastructure “plumbing” Clang, Linux kernel — compiling Linux kernel with clang and fix warnings found during the compiling processLinux kernel — security audits for signing/key management policies and vulnerability reporting modules, respectively)

The LF also fostered approaches to discuss and address supply chain attacks online and in virtual venues, including Building Cybersecurity into the Software Supply Chain Town Hall and SupplyChainSecurityCon.

Community Highlight: Internet Security Research Group ‬

Let’s Encrypt provides the digital infrastructure for a more secure and privacy-respecting Internet. It operates the world’s largest certificate authority, securing traffic for more than 250 million websites.

In late 2020, ISRG launched Prossimo, a project whose goal is to move the Internet’s security-sensitive software infrastructure to memory-safe code. Many of the most critical software vulnerabilities are memory safety issues in C and C++ code. While deploying fuzzing, static analysis, and code reviews can catch vulnerabilities, such mitigations do not eliminate all risks. Moreover, these security mitigation tactics consume considerable resources on an ongoing basis. In contrast, using memory-safe languages eliminates the entire class of issues. This year, Prossimo worked with Linux kernel, cURL, and Apache maintainers to introduce new memory-safe code to these critical, widely-used pieces of software.

ISRG’s latest project effort, Prio, is to operate a privacy-preserving metrics service. Prio uses a system that enables the collection of aggregate statistics such as application metrics. Apple and Google’s Covid-19 Exposure Notification Express app uses this service. ISRG Prio has processed over two billion metrics and is helping operators optimize the user experience based on aggregate, privacy-respecting telemetry metrics.

These standardization efforts are made possible by the OpenSSF, the SPDX and OpenChain projects, and the ISRG.

To learn more about and get involved with OpenSSF, click here

To learn more about and get involved with the ISRG, click here

To learn more about the SPDX SBOM standard, click here

To learn more about the OpenChain standard, click here

The post Linux Foundation: Defending the Global Software Supply Chain from Cyberattacks in 2021 appeared first on Linux Foundation.

New Quantum Intermediate Representation Alliance Serves as Common Interface for Quantum Computing Development

QIR Alliance is part of the Linux Foundation’s Joint Development Foundation work on open standards

SAN FRANCISCO, November 30, 2021 – The Linux Foundation, the nonprofit organization enabling mass innovation through open source, today announced the new QIR Alliance, a joint effort to establish an intermediate representation with the goal to facilitate interoperability within the quantum ecosystem and provide a representation suitable for current and future heterogenous quantum processors. Founding members include Honeywell, Microsoft, Oak Ridge National Laboratory, Quantum Circuits Inc. and Rigetti Computing. 

QIR, or Quantum Intermediate Representation, is based on the popular open source LLVM compiler toolchain. QIR specifies a set of rules for representing quantum programs within the LLVM IR. Examples of QIR applications include using the standard LLVM infrastructure to write quantum optimizers that operate on QIR and target it to specific hardware backends or linking it with classical high performance libraries for quantum simulation.

“We expect there to be exciting advances in how classical and quantum computations can interact at the hardware level. The QIR Alliance will provide a single representation that can be used for both today’s restricted capabilities and the more powerful systems of the future,” said Bettina Heim, principal software engineering manager, Microsoft. “This will allow the community to experiment with and develop optimizations and code transformations that work in a variety of use cases.”

Quantum development SDKs and languages appear and evolve at a fast pace, along with new quantum processors with unique and distinct capabilities from each other. To provide interoperability between new languages and new hardware capabilities and reduce development effort from all parties, it is imperative for the ecosystem to develop and share a forward-looking intermediate representation that works with present and future quantum hardware.

“Quantum technology is still quite nascent but the promise grows every day,” said Seth Newberry, general manager of standards at Joint Development Foundation. “The QIR Alliance is poised to enable the open and technical development necessary to realize these promises. We’re very happy to provide a forum for this work.”

For more information, please visit: https://qir-alliance.org 

Member Quotes

Honeywell

“The Quantum-Intermediate Representation Alliance, also known as QIRA, is a key piece of the quantum computing ecosystem that enables quantum hardware suppliers and quantum software suppliers to reduce redundant efforts involved in implementing programming languages across quantum computer architectures,” said Alex Chernoguzov, Honeywell Quantum Chief Engineer, Honeywell.

Oak Ridge National Laboratory

“ORNL is thrilled to be a part of the Quantum Intermediate Representation Alliance, which aims to develop a unified LLVM-based intermediate representation for quantum computing. A consistent IR of quantum programs will enable interoperability between quantum applications and hardware devices, making quantum computing more usable to researchers and developers. We look forward to contributing to the QIR specification and the associated compiler toolchain under this partnership,” said Thien Nguyen, Quantum Computer Science Researcher, Oak Ridge National Laboratory.

Quantum Circuits Inc.

At QCI, we are very pleased to be participating in the QIR Alliance. The QIR approach represents a revolutionary advance in the representation of quantum circuits, enabling users to take full advantage of the unique capabilities of quantum computing systems across a variety of different hardware platforms,” said Tom Lubinski, Chief Software Architect of Quantum Circuits Inc.

Rigetti

“Rigetti has pioneered hybrid system architectures that are quickly becoming the predominant approach for cloud-based quantum computing” said David Rivas, SVP Systems & Services at Rigetti Computing. “The QIR Alliance is focusing on precisely the interface between quantum and classical compute, enabling rapid advances in quantum programming language design and execution systems. We’re thrilled to be working closely with this community to design the necessary compiler technology and develop implementations for Rigetti hardware.”

About Joint Development Foundation

Launched in 2015, the Joint Development Foundation (the Joint Development Foundation) is an independent non-profit organization that provides the corporate and legal infrastructure to enable groups to quickly establish and operate standards and source code development collaborations. More information about the Joint Development Foundation is available at http://www.jointdevelopment.org/.

About the Linux Foundation

Founded in 2000, the Linux Foundation is supported by more than 1,000 members and is the world’s leading home for collaboration on open source software, open standards, open data, and open hardware. Linux Foundation’s projects are critical to the world’s infrastructure including Linux, Kubernetes, Node.js, and more.  The Linux Foundation’s methodology focuses on leveraging best practices and addressing the needs of contributors, users and solution providers to create sustainable models for open collaboration. For more information, please visit us at linuxfoundation.org.

###

The Linux Foundation has registered trademarks and uses trademarks. For a list of trademarks of The Linux Foundation, please see our trademark usage page:  https://www.linuxfoundation.org/trademark-usage. Linux is a registered trademark of Linus Torvalds.

Media Contact

Jennifer Cloer

Story Changes Culture

503-867-2304

jennifer@storychangesculture.com

The post New Quantum Intermediate Representation Alliance Serves as Common Interface for Quantum Computing Development appeared first on Linux Foundation.

New Linux Foundation Project Accelerates Collaboration on Container Systems Between Enterprise and High-Performance Computing Environments

Formerly Singularity, the newly named Apptainer project delivers a feature set that supports both application and microservice use cases

SAN FRANCISCO, Calif.,  — November 30, 2021— The Linux Foundation, the nonprofit organization enabling mass innovation through open source, today announced it will host the Apptainer project. Formerly the Singularity project, Apptainer is the most widely used container system for High-Performance (HPC) computing and is one of the container systems uniquely suited for both enterprise and HPC use cases. It is designed to execute applications at bare-metal performance while being secure, portable and completely reproducible.

“The Apptainer project has had massive growth and needs a neutral home with proven open source governance to support its next development and adoption phase,” said Gregory Kurtzer, CEO of CIQ and Founder and Project Lead of Singularity/Apptainer. “The Linux Foundation is the natural host for Apptainer, where it can also collaborate with the Cloud Native Computing Foundation, Open Container Initiative, OpenHPC and other projects to expand its ecosystem.”

The HPC community for many years has been isolated from the enterprise and cloud sectors of

the ecosystem, but those barriers are starting to come down. HPC consumers are looking to

modernize and take advantage of enterprise tech and enterprises are looking to make use of

decades of optimizations in performance and parallelization through use-cases like Artificial

Intelligence (AI), Machine Learning (ML) and compute- and data-driven analytics.

“The Apptainer project is at a pivotal moment in its growth and evolution,” said Mike Dolan,

senior vice president and general manager of projects at the Linux Foundation. “We look

forward to supporting this community and enabling cross collaboration with even more open

source developers and technologists to expand its ecosystem of contributors.”

Apptainer features include: public/private key signing of containers; Docker- and

OCI-compatible; container encryption and integration with Vault and other management

platforms; single-file SIF executable container format; runs “rootless” and prohibits privilege

escalation within the container; and supports GPU, FPGA, high-speed networks and

filesystems, among others.

For more information about Apptainer, please visit: http://www.apptainer.org

Supporting Comments

“For an open source project to be healthy, there needs to be a clear separation between the project and commercial support options.  Both are critical, and I see this move as a step in the right direction to ensure commercial viability and a healthy community,” said Brent Gorda, HPC veteran.

AMD

“The Apptainer project has been an important step for containerization in high performance computing, driving an open-source platform that allows users to run complex applications on HPC clusters in a simple, portable, and reproducible way. We’re excited to see the Singularity project rebranded as the Apptainer project under The Linux Foundation and continue to provide the HPC community access to open-source container software that’s critical for HPC,” said Brock Taylor, Global HPC Solutions Director, AMD.

Berkeley Lab

“As the founding organization, we are thrilled that Singularity[1] has experienced such broad adoption in HPC, and we are really looking forward to seeing its maturing to the next level now,” said Gary Jung, Scientific Computing Group Lead at LBNL. “The time has never been better to move this technology to the Linux Foundation, where both the HPC and Enterprise communities can collaborate and build this container system for the future.”

Fermilab

“The health of Apptainer as an open source project is of vital importance to the High Energy Physics community and the OSG consortium which both use Apptainer in their High Throughput Computing and High Performance Computing every day to advance their science missions. The CIO of Fermilab and the OSG executive team endorse this move of the Apptainer open source project to Linux Foundation hosting and expect it to help ensure the long term health of the project,” said Dave Dykstra, Fermilab.

HPCNow!

“For a global HPC consulting company like HPCNow!, moving Apptainer to a Linux Foundation project not only represents another massive step in maturity level but also ensures the future of this extraordinary technology. The evolution of Apptainer is extremely important for our clients, who widely adopted this strategic software to guarantee portability, long-term reproducibility, and performance,” said Jordi Blasco, CTO at HPCNow.

Intel

“Intel is a long supporter of the power of open source to unite and accelerate ecosystems.  As a user of Apptainer, we strongly support the contribution of Apptainer to the Linux Foundation and look forward to seeing the communities’ engagement in driving this project forward,” said Sanjiv Shah, Vice President – Software and Advanced Technology Group, General Manager of Developer Software Engineering.

Sandia National Laboratories

“Apptainer can support scalable containers on HPC and Cloud infrastructure, so its move to the Linux Foundation is both exciting and a natural evolution of this important technology,” said Andrew Younge from Sandia National Laboratories. “We’re looking forward to continuing to work with the project and participating in the growing community at the Linux Foundation.”

About the Linux Foundation

Founded in 2000, the Linux Foundation and its projects are supported by more than 1,800 members and is the world’s leading home for collaboration on open source software, open standards, open data, and open hardware. Linux Foundation’s projects are critical to the world’s infrastructure including Linux, Kubernetes, Node.js, Hyperledger, RISC-V, and more.  The Linux Foundation’s methodology focuses on leveraging best practices and addressing the needs of contributors, users and solution providers to create sustainable models for open collaboration. For more information, please visit us at linuxfoundation.org.

###

The Linux Foundation has registered trademarks and uses trademarks. For a list of trademarks of The Linux Foundation, please see its trademark usage page: www.linuxfoundation.org/trademark-usage. Linux is a registered trademark of Linus Torvalds.

Media Contacts

Jennifer Cloer

503-867-2304

jennifer@storychangesculture.com

[1] Singularity is the former name of the Apptainer project.

The post New Linux Foundation Project Accelerates Collaboration on Container Systems Between Enterprise and High-Performance Computing Environments appeared first on Linux Foundation.

Virtual Machine Secure Boot Database Updates Made Easy with Oracle Linux

Some great insight into how to update th

Click to Read More at Oracle Linux Kernel Development