You are viewing content from a past/completed QCon -

SESSION + Live Q&A

Open Source Developers Are Security’s New Front Line

Bad actors have recognised the power of open source and are now beginning to create their own attack opportunities. This new form of assault, where OSS project credentials are compromised and malicious code is intentionally injected into open source libraries, allows hackers to poison the well. In this session, Ilkka will explain how both security and developers must work together to stop this trend. Or, risk losing the entire open source ecosystem.

  • Analyse, and detail, the events leading to today’s “all-out” attack on the OSS industry
  • Define what the future of open source looks like in today’s new normal
  • Outline how developers can step into the role of security, to protect themselves, and the millions of people depending on them

Speaker

Ilkka Turunen

Global Director, Pre-Sales Engineering @Sonatype

Ilkka Turunen is the Global Director of Pre-sales Engineering at Sonatype. His background is in software and systems engineering, acting as an architect for several commercial projects. He's helped define everything from the software design to webscale infrastructure architectures and...

Read more
Find Ilkka Turunen at:

Location

Henry Moore, 4th flr.

Track

SPONSORED SOLUTIONS TRACK II

Video

Video is not available

Share

From the same track

SESSION + Live Q&A

Lessons Learned Implementing ChatOps

Email overload, distributed teams and excessive meetings have caused many organizations to move their DevOps teams to messaging platforms and thus adopt ChatOps workflows. With thousands of open source installs and hundreds of customer implementations, we have a few lessons to share on...

Corey Hulen

CTO and Co-founder @Mattermost

SESSION + Live Q&A

Kubernetes for Developers, Architects, & Other People

You've got kubernetes up and running, and you're ready for it to change your life! But, all you see now is a blinking cursor. What do you do now?!This talk explains what cloud native development is, how kubernetes supports it, and give you a toolkit to start planning for how you'll...

Michael Coté

Staff Technologist @VMware

SESSION + Live Q&A

Using Reinforcement Learning AI to Accelerate DevOps

You probably learned that hacking on code until it works is the wrong way to write a program. But today, that’s essentially what we do in AI (albeit trillions of times faster)—and it achieves remarkable results!Reinforcement learning was notably used by Google’s AlphaGo...

Mathew Lodge

Chief Executive Officer @diffbluehq

SESSION + Live Q&A

Pitfalls in Measuring SLOs

We built support for SLOs (Service Level Objectives) against our event store so we could monitor operations for our own complex distributed system. In the process of doing so, we learned that there were a number of important aspects that we didn’t expect from carefully reading the SRE...

Danyel Fisher

Principal Design Researcher @honeycombio

SESSION + Live Q&A

Design, Catalogue, Discover and Use Your Event Assets

How do you communicate about the Event assets in your organisation?  Where do you keep what Events there are?  Authors and users of RESTful APIs are used to a rich suite of tools that gather, document, manage, monitor and govern their APIs so that teams can collaborate on their API...

Tom Fairbairn

Solace Distinguished Engineer

View full Schedule