Get Essential Security Information from Linux Security Summit Videos
In case you missed it, videos for Linux Security Summit NA are now available. On Linux.com, we covered a couple of these in depth, including:
Redefining Security Technology in Zephyr and Fuchsia By Eric Brown
If you’re the type of person who uses the word “vuln” as a shorthand for code vulnerabilities, you should check out the presentation from the recent Linux Security Summit called “Security in Zephyr and Fuchsia.” In the talk, two researchers from the National Security Agency discuss their contributions to the nascent security stacks of two open source OS projects: Zephyr and Fuchsia.
Building Security into Linux-Based Azure Sphere By Eric Brown
Microsoft’s Ryan Fairfax explained how to fit an entire Linux stack into 4 MiB of RAM in this presentation. Yet, the hard part, according to Fairfax, was not so much the kernel modification, as it was the development of the rest of the stack. This includes the custom Linux Security Module, which coordinates with the Cortex-M4’s proprietary Pluton security code using a mailbox-based protocol.
Greg Kroah-Hartman Explains How the Kernel Community Is Securing Linux By Swapnil Bhartiya
In this article, Swapnil Bhartiya interviewed Linux kernel maintainer Greg Kroah-Hartman about how the kernel community is hardening Linux against vulnerabilities. You can see excerpts from their talk in the accompanying video.
The entire list of 27 videos from the event also includes:
Sub-system Update: Linux Integrity Status Update By Mimi Zohar, IBM
Life Behind the Tinfoil: A Look at Qubes and Copperhead By Konstantin Ryabitsev, The Linux Foundation
Year in Review: Android Kernel Security By Jeff Vander Stoep & Sami Tolvanen, Google
Proactive Software Defense against Side Channel Attacks By Kristen Accardi, Intel
Making C Less Dangerous By Kees Cook, Google
The next Linux Security Summit Europe, coming up October 25 - 26 in Edinburgh, offers more essential security information, with refereed presentations, discussion sessions, subsystem updates, and more. There's still time to register and attend! Check out the full schedule and stay tuned for more coverage.
You can also sign up to receive event updates: