The Linux Foundation

Subscribe to The Linux Foundation feed The Linux Foundation
Decentralized innovation, built on trust.
Updated: 2 hours 30 min ago

The Linux Foundation and Fintech Open Source Foundation Announce Keynote Speakers for Open Source Strategy Forum London 2021

Thu, 09/16/2021 - 22:03

Experts and industry leaders from financial services, technology and open source will gather for thought-provoking insights and conversations about how to best leverage open source software to solve industry challenges.

SAN FRANCISCO, September 16, 2021The Linux Foundation, the nonprofit organization enabling mass innovation through open source, along with co-host Fintech Open Source Foundation (FINOS), a nonprofit whose mission is to accelerate adoption of open source software, standards and best practices in financial services, today announced keynote speakers for Open Source Strategy Forum London (OSSF). The event takes place October 5, preceded by a FINOS Member event on October 4, in London, England. The schedule can be viewed here and the keynote speakers can be viewed here

OSSF’s goal is to deepen collaboration across finance, open source and technology and drive innovation across the industry in order to deliver better code, faster. The event will feature 35+ sessions, revealing recent developments and the direction of open source in financial services across a wide range of topics and domains.

“We are entering what can only be referred to as the golden age for Open Source in Financial Services”, said Gabriele Columbro, Executive Director, FINOS. “In the last year not only have we seen an exponential growth in contributions from Financial Institutions – something frankly unprecedented – but we are now witnessing the industry coming together to solve long standing business challenges through open collaboration. I am truly excited to have so many leaders at OSSF sharing their vision for an open financial stack, and to be able to bring our community together for a fantastic and unique event like OSSF.”

Keynote speakers this year include:

  • Gabriele Columbro, Executive Director, FINOS
  • Nick Cook, Head of Global Strategy and Partnerships, Alliance for Innovative Regulation (AIR), and former Head of Innovation, UK Financial Conduct Authority (FCA)
  • Jane Gavronsky, Chief Technology Officer, FINOS, and former Managing Director, Credit Suisse
  • Russell Green, Managing Director, Deutsche Bank AG
  • Liz Rice, Chief Open Source Officer, Isovalent

Conference Session Highlights:

Attending companies include: Adaptive Financial Consulting Limited, Audace Labs, Avanade, Bitergia, Canonical, Citi Group, Cosaic, Demodyfi, Deutsche Bank, Digital Asset, EPAM Systems, Evolveum, Fidelity Investments, GitHub, GitLab, Goldman Sachs, IHS Markit, ING, International Swaps and Derivatives Association, Itaú Unibanco SA, Large Credit Union Coalition, London Stock Exchange, Morgan Stanley, Nomura Holdings, Point72 Asset Management, Red Hat, Scott Logic, Symphony, TD Securities, Wipro, U.S. Bank, and many more.

Registration is available for 460 GBP. Members of The Linux Foundation receive a 20 percent discount – members can contact events@linuxfoundation.org to request a member discount code. Members of FINOS can attend at no cost – members can contact ossf@finos.org to request the FINOS Member registration code. 

Health and Safety
Attendees will be required to be fully vaccinated against the COVID-19 virus and wear a mask while onsite at the event. Additionally, all attendees will need to comply with all on-site health measures, in accordance with The Linux Foundation Code of Conduct. To learn more, visit the Health & Safety webpage and read our blog post.

Press
Members of the press who would like to request a press pass to attend should contact Kristin O’Connell.

About the Linux Foundation
Founded in 2000, the Linux Foundation is supported by more than 2,000 members and is the world’s leading home for collaboration on open source software, open standards, open data, and open hardware. Linux Foundation’s projects are critical to the world’s infrastructure, including Linux, Kubernetes, Node.js, and more. The Linux Foundation’s methodology focuses on leveraging best practices and addressing the needs of contributors, users and solution providers to create sustainable models for open collaboration. For more information, please visit linuxfoundation.org.

The Linux Foundation Events are where the world’s leading technologists meet, collaborate, learn and network in order to advance innovations that support the world’s largest shared technologies.

Visit our website and follow us on Twitter, Linkedin, and Facebook for all the latest event updates and announcements.

The Linux Foundation has registered trademarks and uses trademarks. For a list of trademarks of The Linux Foundation, please see its trademark usage page: www.linuxfoundation.org/trademark-usage. Linux is a registered trademark of Linus Torvalds. 

###

Media Contact
Kristin O’Connell
The Linux Foundation
koconnell@linuxfoundation.org

The post The Linux Foundation and Fintech Open Source Foundation Announce Keynote Speakers for Open Source Strategy Forum London 2021 appeared first on Linux Foundation.

Academy Software Foundation giving open communities access to production-grade digital assets for testing, demonstration, and education purposes

Tue, 09/14/2021 - 23:00
Background

The Academy Software Foundation (ASWF), a project hosted by The Linux Foundation, provides a neutral forum for open source software developers in the motion picture and broader media industries to share resources and collaborate on image creation, visual effects, animation, and sound technologies. 

It was created in 2018 after the conclusion of an investigation by the Academy of Motion Pictures Arts and Sciences (AMPAS) Science and Technology Council holding an 18-month investigation on the state of open source in the industry. This aligned with the need for a vendor-neutral foundation to provide a sustainable home for open source projects that are key to the growth of the industry.

Identifying the need for exemplar assets for community use

As of August 2021, The Academy Software Foundation provides a home for Open Shading Language, OpenColorIO, OpenCue, OpenEXR, OpenTimelineIO, OpenVDB, and MaterialX.

As these projects have progressed in development, there was a need identified to have production-grade digital assets (e.g.,3D scene data, images, image sequences, volumetric data, animation rigs, edit decision lists) available for use in development and testing environments to ensure these projects can scale to the demands of the movie and content creation processes. 

Furthermore, the ASWF identified an additional need to have production-grade assets for general research and learning purposes. 

The ASWF identified two objectives to address these requirements:

  • Provide a vendor-neutral home for both homing the assets and being a curator for exemplar assets that would align with the industry needs.
  • Create a licensing framework striking a balance between the needs in research, learning, and open source development, with the intellectual property concerns of production-grade assets (as they often come from real productions).
An open community comes together

There was some precedent in the industry, with the 2018 release of the Moana Island Scene by Disney Animation. This sparked several discussions in the industry on how to have a larger set of similar assets available for community use leading to the creation of an Asset Repository Working Group at the Academy Software Foundation in 2020.

The culmination of this working group came in July 2021, with the transition of the working group to a formal project that will establish the infrastructure and governance of the Assets Repository. The intention is for the project to function and work like any other open source project, with full transparency and community participation, to identify and curate exemplar assets. 

At the same time, the legal counsel across Academy Software Foundation members came together to align on the ASWF Digital Assets License, which was created in the spirit of licenses used previously in the industry and designed to specifically ensure these assets can be used for education, learning, research, and open source development. The ASWF Digital Assets License helped create a bridge between producers and consumers of these assets, establishing standardized terms to enable collaboration and the re-use of content in an industry where it had previously been limited.

As of August 2021, there is interest from multiple organizations in contributing assets to this repository as it takes form over the next few months.

Conclusion

The Linux Foundation has been the home for vendor-neutral collaboration in both horizontal technology spaces and vertical markets such as automotive, networking, energy, and here motion pictures. In supporting over 750 open source projects, we are starting to see more and more efforts such as these where the collaboration outside of traditional software development and into educational materials, community development, and standards. The Assets Repository project at the Academy Software Foundation is a great example of the unique collaboration opportunities that open source brings and are driven by our open communities.

The post Academy Software Foundation giving open communities access to production-grade digital assets for testing, demonstration, and education purposes appeared first on Linux Foundation.

Antmicro Doubles Down on Commitment to the Zephyr Project as Community Grows to More Than 1,000 Contributors

Tue, 09/14/2021 - 02:49

Wind River also advances its commitment to the open source ecosystem by joining the project as a Silver Member

SAN FRANCISCO, September 13, 2021 On the heels of its 5th anniversary and inaugural Developer Summit, the Zephyr Project today announces a major milestone with more than 1,000 contributors and 55,000 commits. Zephyr, an open source project at the Linux Foundation that builds a safe, secure and flexible real-time operating system (RTOS) for resource-constrained devices, also welcomes Antmicro as a Platinum member and Wind River as a Silver member.

Zephyr RTOS unites companies, developers and end users around the world to ensure balanced collaboration and feedback to evolve and meet the needs of its community. This innovative relationship among stakeholders advances the Zephyr Project’s support of new hardware, developer tools, sensors, and drivers, while maximizing the functionality of devices that run applications developed using the Zephyr OS.

“The number of contributors to an open source project is one of the best measures of its relevance to the open source community,” said Barna Ibrahim, Chair of the Zephyr Project Marketing Group and Strategic Partner Development Lead at Google. “Today’s announcement represents one more step in our open source journey and increased role in the advocacy, use and contribution across the Zephyr ecosystem. Ultimately, this strong ecosystem will help build secure and safe products across the globe.”

Evidence that momentum will continue growing for the project include:

Commitment to Zephyr

Today, the Zephyr Project announces that long-time member Antmicro has doubled down on its commitment by upgrading its membership to Platinum. Peter Gielda, CEO of Antmicro, will join the Zephyr Governing Board.

Additionally, Wind River joined the project as a Silver member. Other project member companies include Adafruit, AVSystem, BayLibre, Eclipse Foundation, Facebook, Fiware, Foundries.io, Golioth, Google, Intel, Laird Connectivity, Linaro, Memfault, Nordic Semiconductor, NXP, Oticon, Parasoft, Pat-Eta Electronics, RISC-V, SiFive, Synopsys and teenage engineering, among others.

“We are delighted to welcome Peter Gielda to the Governing Board,” said Joel Stapleton, Chair of the Zephyr Project Governing Board and Principal Engineering Manager at Nordic Semiconductor. “Antmicro has already contributed so much to Zephyr with board support, demos and documentation. We look forward to working more closely with them and strengthening our community.”

“An active member of the project since its early days, Antmicro has been pioneering the use of Zephyr in several fields, including FPGAs and the RISC-V architecture, in both hard and soft implementations,“ said Peter Gielda, CEO at Antmicro and now Member of the Zephyr Project Governing Board. “Building on top of our work combining TensorFlow Lite Micro, Zephyr and Renode for machine learning development we join our customers and partners Google, Intel, NXP and Nordic Semiconductor in a leadership position in Zephyr to strengthen the vendor-neutral RTOS option for the open source hardware, software and AI solutions that we develop.”

“As we move towards an intelligent systems future, it will become increasingly important to collect and process data at the intelligent edge in real time,” said Amar Parmar, Senior Director, Solution Partners at Wind River. “For resource-constrained devices, Zephyr can be at the heart of where this data originates. Zephyr Project has fostered a vibrant and growing community addressing the technical requirements to deploy a new generation of devices, aligned with modern development practices and tooling. As an original contributor to the code base and an active member of the community, we look forward to continued collaboration.”

To learn more about Zephyr RTOS, visit the Zephyr website and blog.

About the Zephyr Project

The Zephyr Project is an open source, scalable real-time operating system (RTOS) supporting multiple hardware architectures. To learn more, please visit www.zephyrproject.org.

About the Linux Foundation

Founded in 2000, the Linux Foundation is supported by more than 1,000 members and is the world’s leading home for collaboration on open source software, open standards, open data, and open hardware. Linux Foundation’s projects are critical to the world’s infrastructure including Linux, Kubernetes, Node.js, and more.  The Linux Foundation’s methodology focuses on leveraging best practices and addressing the needs of contributors, users and solution providers to create sustainable models for open collaboration. For more information, please visit us at linuxfoundation.org.

###

The post Antmicro Doubles Down on Commitment to the Zephyr Project as Community Grows to More Than 1,000 Contributors appeared first on Linux Foundation.

Michael Cheng Joins the Linux Foundation Board of Directors

Fri, 09/10/2021 - 03:19

We’re pleased to announce that Michael Cheng joined the Linux Foundation Board of Directors earlier this year. Michael is a product manager at Facebook, currently supporting open source and standards work across the company. Michael is a former network engineer and M&A attorney. He previously led the product, commercial, and intellectual property functions on Facebook’s M&A legal team.

Michael has built some of the world’s most valuable and innovative open source ecosystems, representing billions of dollars of value, including GraphQL, Magma, Diem, ML Commons, and many others.

In 2018, Michael helped design the Joint Development Foundation — a lightweight, turnkey solution for the development of technology standards and specifications. Michael then brought in GraphQL as the JDF’s first project. GraphQL now powers trillions of API calls every day for some of the world’s largest companies.

Michael Cheng

Michael was one of the founding members of ML Commons, an industry-wide consortium that aims to unlock the next stage of AI/ML adoption by creating useful measures of quality and performance, large-scale open data sets, and common development practices and resources. Michael served as ML Commons’ first treasurer, and it has since grown to more than 50 members and affiliates representing a broad cross-section of the ML ecosystem.

This year, Michael created the Magma Foundation, the first open source platform that enables telecom operators to build modern and efficient mobile networks at scale. Michael now chairs the board of the Magma Foundation — growing its ranks to more than 20 members this year.

Michael is also a champion of diversity. Late last year, at the height of the pandemic, Michael designed and launched the Major League Hacking (MLH) Fellowship program to address challenges faced by both early-career developers who saw many of their job and internship opportunities disappear open source maintainers struggling to keep projects afloat. The Fellowship has been effective at helping students land desirable jobs while increasing the aggregate health of the open source projects that participate in the program. Michael also launched the Black Developer Scholarship for developers who self-identify as Black or African diaspora to participate in the Fellowship.

Michael has also played an integral role in the creation of the Presto Foundation, eBPF Foundation, Ent Foundation, Reactive Foundation, Urban Computing Foundation, and OpenChain.

“Michael is one of the rare breeds of lawyers who possess both a strong technical background and a sharp mind for process improvement.  His leadership at Facebook has made a meaningful impact within the OpenChain project and beyond.  I warmly welcome him to the Linux Foundation board.”

Dave Marr, Vice President, Legal Counsel at Qualcomm Technologies

“Facebook is built on top of open source and has shown a strong commitment to investing back into the communities from which we all benefit. Micheal’s legal background and technical knowledge make him an ideal member of the Linux Foundation board. His leadership is just another example of Facebook’s commitment to open source and collective innovation.” 

Jim Zemlin, Executive Director, Linux Foundation

“Successful open source work requires an intersection of legal, business, technical, and community thinking and Michael brings all those skills in one very integrated way.  And his perspectives from his experience shepherding multiple open source projects at scale and in production is of great value to the Linux Foundation board. I am excited to welcome him to the board and to work with him on advancing open source innovation.” 

Nithya Ruff – Chair, Linux Foundation Board of Directors, Head, Comcast Open Source Program Office

“Michael’s role in growing some of the Linux Foundation’s most valuable communities cannot be understated. He brings a level of technical depth, legal acumen, and industry credibility that has been instrumental in stitching together novel coalitions of companies, NGOs, and individuals into dynamic and sustainable communities. We’re thrilled to have him on the board.”

Chris Aniszczyk, CTO, CNCF

The post Michael Cheng Joins the Linux Foundation Board of Directors appeared first on Linux Foundation.

SPDX Becomes Internationally Recognized Standard for Software Bill of Materials

Thu, 09/09/2021 - 23:00

Backed by many of the world’s largest companies for more than a decade, SPDX formally becomes an internationally recognized ISO/IEC JTC 1 standard during a transformational time for software and supply chain security

SAN FRANCISCO, September 9, 2021 – The Linux Foundation, Joint Development Foundation, and the SPDX community, today announced the Software Package Data Exchange® (SPDX®) specification has been published as ISO/IEC 5962:2021 and recognized as the international open standard for security, license compliance, and other software supply chain artifacts. ISO/IEC JTC 1 is an independent, non-governmental standards body. 

Intel, Microsoft, Siemens, Sony, Synopsys, VMware, and WindRiver are just a small sample of the companies already using SPDX to communicate Software Bill of Materials (SBOM) information in policies or tools to ensure compliant, secure development across global software supply chains. 

“SPDX plays an important role in building more trust and transparency in how software is created, distributed, and consumed throughout supply chains. The transition from a de-facto industry standard to a formal ISO/IEC JTC 1 standard positions SPDX for dramatically increased adoption in the global arena,” said Jim Zemlin, executive director, the Linux Foundation. “SPDX is now perfectly positioned to support international requirements for software security and integrity across the supply chain.” 

Between eighty and ninety percent (80%-90%) of a modern application is assembled from open source software components. An SBOM accounts for the software components contained in an application — open source, proprietary, or third-party — and details their provenance, license, and security attributes. SBOMs are used as a part of a foundational practice to track and trace components across software supply chains. SBOMs also help to proactively identify software issues and risks and establish a starting point for their remediation.

SPDX results from ten years of collaboration from representatives across industries, including the leading Software Composition Analysis (SCA) vendors – making it the most robust, mature, and adopted SBOM standard. 

“As new use cases have emerged in the software supply chain over the last decade, the SPDX community has demonstrated its ability to evolve and extend the standard to meet the latest requirements. This really represents the power of collaboration on work that benefits all industries,” said Kate Stewart, SPDX tech team co-lead. “SPDX will continue to evolve with open community input, and we invite everyone, including those with new use cases, to participate in SPDX’s evolution and securing the software supply chain.”  

For more information on how to participate in and benefit from SPDX, please visit: https://spdx.dev.

To learn more about how companies and open source projects are using SPDX, recordings from the “Building Cybersecurity into the Software Supply Chain” Town Hall that was held on August 18th are available and can be viewed at: https://events.linuxfoundation.org/supply-chain-town-hall/ 

ISO/IEC JTC 1 is an independent, non-governmental international organization based in Geneva, Switzerland. Its membership represents more than 165 national standards bodies with experts who share knowledge and develop voluntary, consensus-based, market-relevant international standards that support innovation and provide solutions to global challenges.

Supporting Comments

Intel

“Software security and trust are critical to our Industry’s success. Intel has been an early participant in the development of the SPDX specification and utilizes SPDX both internally and externally for a number of software use-cases,” said Melissa Evers, Vice President – Software and Advanced Technology Group, General Manager of Strategy to Execution, Intel.

Microsoft

“Microsoft has adopted SPDX as our SBOM format of choice for software we produce,” says Adrian Diglio, Principal Program Manager of Software Supply Chain Security at Microsoft. “SPDX SBOMs make it easy to produce U.S. Presidential Executive Order compliant SBOMs, and the direction that SPDX is taking with the design of their next gen schema will help further improve the security of the software supply chain.”

Siemens

“With ISO/IEC 5962:2021 we have the first official standard for metadata of software packages. It’s natural that SPDX is that standard, as it’s been the de facto standard for a decade. This will make license compliance in the supply chain much easier, especially because several open source tools like FOSSology, ORT, scancode, and sw360 already support SPDX,” said Oliver Fendt, senior manager, open source at Siemens. 

Sony

”The Sony team uses various approaches to managing open source compliance and governance,” says Hisashi Tamai, Senior Vice President, Deputy President of R&D Center, Representative of the Software Strategy Committee, Sony Group Corporation. “An example is the use of an OSS management template sheet that is based on SPDX Lite, a compact subset of the SPDX standard. It is important for teams to be able to quickly review the type, version, and requirements of software, and using a clear standard is a key part of this process.”

Synopsys

“The Black Duck team from Synopsys has been involved with SPDX since its inception, and I personally had the pleasure of coordinating the activities of the project’s leadership for more than a decade. Representatives from scores of companies have contributed to the important work of developing a standard way of describing and communicating the content of a software package,” said Phil Odence, General Manager, Black Duck Audits.

VMware

“SPDX is the essential common thread among tools under the Automating Compliance Tooling (ACT) Umbrella. SPDX enables tools written in different languages and for different software targets to achieve coherence and interoperability around SBOM production and consumption. SPDX is not just for compliance, either; the well-defined and ever-evolving spec is also able to represent security and supply chain implications. This is incredibly important for the growing community of SBOM tools as they aim to thoroughly represent the intricacies of modern software,” said Rose Judge, ACT TAC Chair and open source engineer at VMware.

Wind River

“The SPDX format greatly facilitates the sharing of software component data across the supply chain. Wind River has been providing a Software Bill of Materials (SBOM) to its customers using the SPDX format for the past 8 years. Often customers will request SBOM data in a custom format. Standardizing on SPDX has enabled us to deliver a higher quality SBOM at a lower cost,” said Mark Gisi, Wind River Open Source Program Office Director and OpenChain Specification Chair.

About SPDX

SPDX is an open standard for communicating software bill of material information, including provenance, license, security, and other related information. SPDX reduces redundant work by providing common formats for organizations and communities to share important data, thereby streamlining and improving compliance, security, and dependability. For more information, please visit us at spdx.org.

###

The Linux Foundation has registered trademarks and uses trademarks. For a list of trademarks of The Linux Foundation, please see our trademark usage page:  https://www.linuxfoundation.org/trademark-usage. Linux is a registered trademark of Linus Torvalds.

Media Contact

Jennifer Cloer

for the Linux Foundation

503-867-2304

jennifer@storychangesculture.com

The post SPDX Becomes Internationally Recognized Standard for Software Bill of Materials appeared first on Linux Foundation.

Ent Joins the Linux Foundation

Tue, 08/31/2021 - 23:00

Today, the Linux Foundation announced that Ent, an entity framework for Go that was developed and open sourced by Facebook in 2019, has moved under the governance of the Linux Foundation to help accelerate its development and foster the community of developers and companies using it.

Ent was designed to enable developers to work on complex backend applications. Developers working on these applications faced the challenge of maintaining a codebase used to manage hundreds of different entity types with numerous, complex relationships between them. Ent uses graph concepts to model an application’s schema and employs advanced code-generation techniques to create type-safe, efficient code that greatly simplifies working with databases compared to other approaches.

Ent is similar to traditional ORMs (Object-Relational Mappers) but takes an opinionated approach that is especially effective in improving developer productivity. 

  • First, schemas are modeled in graph concepts (nodes and edges) instead of the more common table-oriented method that makes traversing through datasets and expressing complex queries easier and less error-prone. 
  • Second, the code generated by Ent is completely type-safe, which means that many classes of common bugs are caught very early on in the development process. In addition, code editing software can understand Ent code very well to offer developers useful hints and feedback as they are typing code. 
  • Finally, schemas are defined in actual Go code, which facilitates a very rich feature set ranging from integrations with observability systems to the definition of privacy (authorization) rules right at the data-access layer. 

“From the start it was obvious that Ent would present a unique and compelling value proposition to a diverse range of use cases across any industry with complex technology stacks,” said Ariel Mashraki, Ent’s creator and lead maintainer. “The promise of collaborating with a broad coalition of users was the main reason we open-sourced Ent.” 

Since it was open-sourced in 2019, engineers from many leading companies have contributed code to Ent, including Facebook, GitHub, Mail.ru, Scaleway and VirtaHealth. Ent has also been used by the CNCF projects and by other open source ecosystems. Ariel Mashraki recently started a new company, Ariga, to create a data fabric solutions provider that is built on Ent. “With the move to the Linux Foundation’s neutral governance model, we (on behalf of myself and the rest of the Ent maintainers) hope to double-down on growing Ent into the industry standard for data-access in Go. You should expect to see a lot of exciting developments in the next six months from the community and we invite all to participate,” said Mashraki.

Ent is just the latest in a variety of technologies that Facebook has first open sourced to the public and then transferred control to the community. “This additional step of enabling open source contributors to take direct ownership of a project’s technical vision is part of our longstanding commitment to open and sustainable innovation,” said Michael Cheng, product manager at Facebook. “Enabling a project’s maintainers to chart their course often sparks additional investment, contributions and new companies building products and platforms based on that project, for example, GraphQL, Presto, ONNX, and Magma, to name a few. We see that Ent is already following a similar pattern and we’ll be cheering on the Ent community as it enters this next stage of exciting growth.”


You can learn more about Ent framework for Go, sample the technology, and contribute back to the project at https://github.com/ent/ent.

The post Ent Joins the Linux Foundation appeared first on Linux Foundation.

Expanded Keynote Line-Up for Open Networking and Edge Summit + Kubernetes on Edge Day Includes Industry Luminaries

Thu, 08/19/2021 - 00:00

Four additional keynotes speakers will grace the main stage at Open Networking and Edge Summit + Kubernetes on Edge Day to share expertise across Automation and AI, 5G, and the power of Open Ecosystems 

SAN FRANCISCO, August 18, 2021The Linux Foundation, the nonprofit organization enabling mass innovation through open source, along with co-hosts LF Edge, LF Networking, and Cloud Native Computing Foundation (CNCF), ​​today announced four top keynote speakers for Open Networking and Edge (ONE) Summit + Kubernetes on Edge Day, taking place October 11-12 in Los Angeles, Calif. The events will be produced in a hybrid format, with both in-person and virtual participation available, and are co-located with KubeCon + CloudNativeCon North America (October 11-15). 

ONE Summit  is the industry’s premier open networking & edge computing event gathering developers, architects and business leaders across enterprises, government, global services providers and cloud for education, inspiration and collaboration. This year, it is joined by Kubernetes on Edge Day which gathers developers and adopters to share their lessons learned in building, breaking, and bettering their edge infrastructure on top of Kubernetes.

“I am especially eager to learn from our newest confirmed keynote speakers, who represent not only the diversity of our community, but the diversity of expertise across the space,” said Arpit Joshipura, General Manager, Networking, Edge, and IoT, The Linux Foundation. “Join us either in-person or virtually to learn from some of the best and brightest innovators.”

With an extensive program of 80+ talks, ONE Summit + Kubernetes on Edge Day will cover the latest trends across networking & edge across business & technical sessions. Conference tracks include: Enterprise Networking & Edge; Cloud Networking & Edge; Kubernetes on Edge; The New Service Provider (Open Core, Unified Edge & Universal Access); and Business Critical & Innovation.

New Keynote speakers:

  • Dr. Junlan Feng, Chief Scientist & General Manager, China Mobile Research. Dr. Feng also chairs the LF Networking Governing Board. Her presentation will focus on Network Automation and AI
  • Jennifer Kyriakakis, Founder & VP Marketing, MATRIXX Software. Ms. Kyriakakis’ session will focus on Making 5G Real Leveraging Open Source
  • Vanessa Little, Global CTO, Interdynamix (IDX). Ms. Little will speak about Challenges & Innovation in Integration of Open Ecosystem 
  • Amy Zwarico, Director – Cybersecurity, Chief Security Office, AT&T. Ms. Zwarico will participate on a keynote panel, “Security across Cloud, Telecom and Edge – in an open world”

Registration

Registration (in-person) is offered at the standard price of US$1125 through September 20. In-Person Academic and Hobbyist Passes are available for US$575 and Student Passes for US$275. Registration to attend virtually is US$50 for all attendee types. Given the current COVID pandemic, all registration funds are fully refundable up until the day before the event.

Members of The Linux Foundation, LF Networking, LF Edge and CNCF receive a 20 percent discount off registration and can contact events@linuxfoundation.org to request a member discount code. 

Attendees looking to attend ONE Summit + Kubernetes on Edge Day and KubeCon + CloudNativeCon can register for all events through the KubeCon + CloudNativeCon registration form and add their ONE Summit registration at a discounted rate (US$599 for Corporate or US$399 for Individual or Academic).

Health and Safety

In-person attendees will be required to be fully vaccinated against the COVID-19 virus and will need to comply with all on-site health measures, in accordance with The Linux Foundation Code of Conduct. Note, in-person registrations are 100 percent refundable until October 10, 2021. To learn more, visit the Health & Safety webpage and read our blog post

Sponsor

Open Networking & Edge Summit + Kubernetes on Edge Day is made possible thanks to our sponsors, including Diamond Sponsors: Intel and Juniper Networks, Platinum Sponsors: Huawei, IBM and Zededa, and Gold Sponsor: Cloud Native Computing Foundation. For information on becoming an event sponsor, click here or email  for more information and to speak to the team.

Press & Analysts

Members of the press and analyst communities who would like to request a press pass to attend should contact Jill Lovato. 

About the Linux Foundation

Founded in 2000, the Linux Foundation is supported by more than 2,000 members and is the world’s leading home for collaboration on open source software, open standards, open data, and open hardware. Linux Foundation’s projects are critical to the world’s infrastructure including Linux, Kubernetes, Node.js, and more. The Linux Foundation’s methodology focuses on leveraging best practices and addressing the needs of contributors, users and solution providers to create sustainable models for open collaboration. For more information, please visit linuxfoundation.org.

The Linux Foundation Events are where the world’s leading technologists meet, collaborate, learn and network in order to advance innovations that support the world’s largest shared technologies.

Visit our website and follow us on Twitter, Linkedin, and Facebook for all the latest event updates and announcements.

The Linux Foundation has registered trademarks and uses trademarks. For a list of trademarks of The Linux Foundation, please see its trademark usage page: www.linuxfoundation.org/trademark-usage. Linux is a registered trademark of Linus Torvalds. 

###

Media Contact

Jill Lovato

The Linux Foundationjlovato@linuxfoundation.org

The post Expanded Keynote Line-Up for Open Networking and Edge Summit + Kubernetes on Edge Day Includes Industry Luminaries appeared first on Linux Foundation.

The Linux Foundation and the TODO Group Announce the Schedule for OSPOCon Europe 2021, Oct 6

Wed, 08/18/2021 - 22:31

OSPOCon, held in North America and Europe this year, is a new event dedicated to creating better, more efficient open source ecosystems, covering the creation and best practices of open source program offices (OSPOs), open source corporate sustainability, and much more.

SAN FRANCISCO, August 18, 2021 —  The Linux Foundation, the nonprofit organization enabling mass innovation through open source, along with co-host the TODO Group, an open group of organizations who collaborate on practices, tools and other ways to run successful and effective open source programs and projects, today announced the conference agenda for OSPOCon Europe 2021. The event takes place October 6 in London, England. The schedule can be viewed here

Open Source Program Offices (OSPOs) face many obstacles, such as ensuring high-quality and frequent releases, engaging with developer communities, and contributing back to other projects effectively. OSPOCon events will empower the collaboration of those working to create a center of competency for open source in their organizations through sharing experiences, best practices and tooling. 

OSPOCon Europe session highlights include:

  • What TODO in the EU: Updates from the TODO Group European Chapter – Leslie Hawthorn, Red Hat & Alexios Zavras, Intel
  • Innersource: The Key to Your OSPO’s Success – John Mark Walker, Fannie Mae
  • Exploring OSPOs and Open Methods in Humanitarian Response – Heather Leson, Solferino Academy, & International Federation of Red Cross Red Crescent Societies & Peter Masters, Humanitarian OpenStreetMap Team (HOT)
  • Good Governance Practices for Healthy Open Source Projects – Dawn Foster, VMware

In addition to OSPOCon Europe, OSPOCon North America is being held September 27-29 in Seattle, Washington alongside Open Source Summit + Embedded Linux Conference 2021. To view the schedule, click here. These events are being produced in a hybrid format, with both in-person and virtual participation available. To learn more, click here

Registration
Registration is offered at the early price of 140 GBP through August 24. Members of The Linux Foundation and the TODO Group receive a 20 percent discount – members can contact events@linuxfoundation.org to request a member discount code.

Health and Safety
In-person attendees will be required to be fully vaccinated against the COVID-19 virus and wear a mask while onsite at the event. Additionally, all attendees will need to comply with all on-site health measures, in accordance with The Linux Foundation Code of Conduct. To learn more, visit the Health & Safety webpage and read our blog post.

Academic Registration Scholarships & Travel Funding
Support for Academic Scholarships and Travel Funding is provided by the Alfred P. Sloan Foundation and is intended to enable participation in OSPOCon by faculty, staff, students, and/or administrators actively engaged with or interested in learning more about Open Source Program Offices in Academic/Research institutions. To learn more and apply, click here.

Diversity & Need-Based Scholarships and Travel Funding
Applications for diversity and need-based scholarships are currently being accepted here. The Linux Foundation’s Travel Fund is also accepting applications, with the goal of enabling open source developers and community members to attend events that they would otherwise be unable to attend due to a lack of funding. We place an emphasis on funding applicants who are from historically underrepresented or untapped groups and/or those of lower socioeconomic status. To learn more and apply, click here

Sponsor
For information on becoming an event sponsor, click here or email us for more information and to speak to our team. The sponsorship deadline is September 9. 

Press
Members of the press who would like to request a press pass to attend should contact Kristin O’Connell.

About the Linux Foundation
Founded in 2000, the Linux Foundation is supported by more than 2,000 members and is the world’s leading home for collaboration on open source software, open standards, open data, and open hardware. Linux Foundation’s projects are critical to the world’s infrastructure including Linux, Kubernetes, Node.js, and more. The Linux Foundation’s methodology focuses on leveraging best practices and addressing the needs of contributors, users and solution providers to create sustainable models for open collaboration. For more information, please visit linuxfoundation.org.

The Linux Foundation Events are where the world’s leading technologists meet, collaborate, learn and network in order to advance innovations that support the world’s largest shared technologies.

Visit our website and follow us on Twitter, LinkedIn, and Facebook for all the latest event updates and announcements.

The Linux Foundation has registered trademarks and uses trademarks. For a list of trademarks of The Linux Foundation, please see its trademark usage page: www.linuxfoundation.org/trademark-usage. Linux is a registered trademark of Linus Torvalds. 

###

Media Contact
Kristin O’Connell
The Linux Foundation
koconnell@linuxfoundation.org

The post The Linux Foundation and the TODO Group Announce the Schedule for OSPOCon Europe 2021, Oct 6 appeared first on Linux Foundation.

Open Mainframe Project Announces the Full Schedule for the 2nd Annual Open Mainframe Summit on September 22-23

Fri, 08/13/2021 - 04:06

The open source mainframe virtual event features keynote speakers from DeployHub, FINOS, Jono Bacon Consulting, the Linux Foundation, ZEDEDA and more 

SAN FRANCISCO, August 12, 2021 The Open Mainframe Project (OMP), an open source initiative that enables collaboration across the mainframe community to develop shared tool sets and resources, today announces the complete schedule of the 2nd annual Open Mainframe Summit. This year’s virtual event, which takes place on September 22-23, will feature keynote speakers Gabriele Columbro, Executive Director of Fintech Open Source Foundation (FINOS); Jason Shepherd, Vice President of Ecosystem at ZEDEDA and Chair of the LF Edge Governing Board; Jono Bacon, a leading community and collaboration speaker and founder of Jono Bacon Consulting; Steve Winslow, Vice President of Compliance and Legal at The Linux Foundation; Tracy Ragan, CEO and Co-Founder of DeployHub and Continuous Delivery Foundation Board Member, and more.

The theme of this year’s Open Mainframe Summit expands beyond the mainframe to highlight influencers with strengths in the areas supporting or leveraging the technology like continuous delivery, edge computing, financial services and open source. It will also highlight projects, diversity and business topics that will offer seasoned professionals, developers, students and leaders an opportunity to share best practices and network with like-minded individuals.

Conference Sessions highlight projects, diversity and business topics such as:

With a commitment to diversity, equity and inclusion, Open Mainframe Project worked closely with the CHAOSS Diversity & Inclusion Badging Program, which encourages events to obtain D&I badges for leadership, self-reflection, and self-improvement on issues critical to building the Internet as a social good. Open Mainframe Summit earned a Gold Badge for prioritizing diversity and inclusion.

See the full conference schedule here. Conference Registration for the online event is $50 for general attendance and $15 for academia.

Open Mainframe Summit is made possible thanks to Platinum Sponsors Broadcom, IBM, Rocket Software and SUSE; Gold Sponsors Micro Focus and Vicom Infinity; Silver Sponsor BMC; and Academic and Community Sponsors CD Foundation and FINOS. For information on becoming an event sponsor, click here

Members of the press who would like to request a press pass to attend should contact Maemalynn at maemalynn@linuxfoundation.org.

About the Open Mainframe Project

The Open Mainframe Project is intended to serve as a focal point for deployment and use of Linux and Open Source in a mainframe computing environment. With a vision of Open Source on the Mainframe as the standard for enterprise class systems and applications, the project’s mission is to build community and adoption of Open Source on the mainframe by eliminating barriers to Open Source adoption on the mainframe, demonstrating value of the mainframe on technical and business levels, and strengthening collaboration points and resources for the community to thrive. Learn more about the project at https://www.openmainframeproject.org.

About The Linux Foundation

The Linux Foundation is the organization of choice for the world’s top developers and companies to build ecosystems that accelerate open technology development and commercial adoption. Together with the worldwide open source community, it is solving the hardest technology problems by creating the largest shared technology investment in history. Founded in 2000, The Linux Foundation today provides tools, training and events to scale any open source project, which together deliver an economic impact not achievable by any one company. More information can be found at www.linuxfoundation.org.

The Linux Foundation has registered trademarks and uses trademarks. For a list of trademarks of The Linux Foundation, please see its trademark usage page: www.linuxfoundation.org/trademark-usage. Linux is a registered trademark of Linus Torvalds.

###

The post Open Mainframe Project Announces the Full Schedule for the 2nd Annual Open Mainframe Summit on September 22-23 appeared first on Linux Foundation.

Facebook, Google, Isovalent, Microsoft and Netflix Launch eBPF Foundation as Part of the Linux Foundation

Thu, 08/12/2021 - 23:48

Industry leaders come together to drive the growth of eBPF as a transformational technology to redefine networking, security, tracing and observability

SAN FRANCISCO, August 12, 2021 – The Linux Foundation, the nonprofit organization enabling mass innovation through open source, today announced that it is hosting the eBPF Foundation. Founding members include Facebook, Google, Isovalent, Microsoft and Netflix. This comes in advance of the eBPF Summit, a free and virtual event taking place August 18-19, 2021.

eBPF allows developers to safely and efficiently embed programs in any piece of software, including the operating system kernel. As a result, eBPF is quickly becoming the method of choice for achieving a wide range of infrastructure use cases, delivering significant efficiency and performance gains and dramatically reducing the complexity of the system. For example, Facebook is using eBPF as the primary software-defined load balancer in its data centers, and Google is using Cilium to bring eBPF-based networking and security to the managed Kubernetes offerings GKE and Anthos.

“eBPF is a revolutionary technology that allows us to modify operating system behavior in real time without risky or expensive kernel code changes. It’s had a remarkable impact on our ability to iterate quickly on everything from networking to security to containerization,” said Alexei Starovoitov, Co-creator and Maintainer of eBPF, Kernel Developer at Facebook.

eBPF changes the way operating systems and infrastructure services are designed. It bridges the boundary between kernel and user space. It encourages and accelerates innovation and is a significant leap forward in open source technology for networking, security, application profiling/tracing and system observability use cases. eBPF enables users to even combine and apply logic across multiple subsystems which were traditionally completely independent.

“eBPF has redefined the way we think about the operating system and has led to a massive wave of innovation in networking, security, and observability. Because of its deep relevance in the cloud native world, eBPF adoption has been accelerating at an incredible pace,” said Daniel Borkmann, Co-creator and Maintainer of eBPF, Kernel Developer at Isovalent.

By making the OS kernel programmable, infrastructure software can leverage existing layers, making them more intelligent, scalable and feature-rich without continuing to add additional layers of complexity to the system. eBPF has resulted in the development of a completely new generation of tooling in areas such as networking, security, application profiling/tracing and performance troubleshooting that no longer rely on existing kernel functionality but instead actively reprogram runtime behavior without compromising execution efficiency or safety.

The eBPF Foundation will expand the significant level of contributions being made to extend the powerful capabilities of eBPF and grow beyond Linux. It will be the home for open source eBPF projects and technologies and nurture the community through a variety of activities, including summits and other collaboration events in order to further drive the growth and adoption of the eBPF ecosystem.

“eBPF is one of the greatest examples of the kind of innovation that happens in the Linux community and encompasses technologies that are natural for us to host. It also represents the future of operating systems and microservices delivery,” said Mike Dolan, general manager and senior vice president of projects at the Linux Foundation. “We look forward to supporting the work of the eBPF Foundation and community.”

For more information, please visit: https://www.ebpf.io

Member Quotes

Facebook
“For many years, eBPF has played a critical role in accelerating the kernel development — thanks to the tireless work of many dedicated developers and maintainers,” said Chris Mason, Kernel Maintainer and Engineering Director at Facebook. “We’re excited to support the work of the eBPF community, enabling them to build the tools needed to power the next generation of Linux system development.”

Google
“We are excited to see the Linux Foundation announce their decision to host eBPF,” said Chris DiBona, director of open source at Google. “eBPF is the future of networking for the Linux kernel and Google is pleased to be part of the evolving standard it has created.”

Isovalent
“The programmability of eBPF has enabled a revolution in security, observability, and networking. In particular in the area of containers and the cloud native space more broadly. We are proud to have played a central role in developing and co-maintaining eBPF from its early days to the industry standard it has become. We are looking forward to continuing to work with the community,” said Thomas Graf, Chief Technology Officer, Isovalent. “Even though eBPF has already found its ways into the production stacks of countless enterprises, we are still at the beginning of the innovation curve that eBPF as a technology unlocks.”

Microsoft
“eBPF has resulted in a new generation of tooling that allows developers to easily diagnose problems, innovate quickly, and extend operating system functionality,” said Mark Russinovich, Chief Technology Officer, Microsoft Azure. “Microsoft looks forward to partnering with the community in further expanding the use of eBPF in new scenarios and platforms.  We’re excited to collaborate with the other founding members and hope additional organizations will join.”

Netflix
“eBPF is a new type of software that provides superpower capabilities, birthing an industry of networking, performance, and security technologies,” said Brendan Gregg, senior performance engineer at Netflix. “Netflix has pioneered uses of eBPF for observability, providing insight into countless areas that were previously difficult or prohibitively expensive to instrument. eBPF has helped us lower application latency and find cost savings. Netflix is delighted to join the eBPF Foundation to collaborate and develop more exciting technologies.”

Supporting Quote

Intel
Intel welcomes the creation of the eBPF Foundation. Technologies including eBPF have the potential to revolutionize critical applications and use cases across compute, storage, networking, and next generation infrastructure. We are excited to continue to contribute to eBPF and look forward to working with the new eBPF Foundation to accelerate customer workloads and unlock innovation,” said Jesse Brandeburg, a Principal Software Engineer in the Ethernet Products Group at Intel.

About The Linux Foundation
Founded in 2000, The Linux Foundation is supported by more than 1,000 members and is the world’s leading home for collaboration on open source software, open standards, open data, and open hardware. The Linux Foundation’s projects are critical to the world’s infrastructure including Linux, Kubernetes, Node.js, and more. The Linux Foundation’s methodology focuses on leveraging best practices and addressing the needs of contributors, users and solution providers to create sustainable models for open collaboration. For more information, please visit us at linuxfoundation.org.

###

The Linux Foundation has registered trademarks and uses trademarks. For a list of trademarks of The Linux Foundation, please see our trademark usage page:  https://www.linuxfoundation.org/trademark-usage. Linux is a registered trademark of Linus Torvalds.

Media Contact
Jennifer Cloer
for the Linux Foundation
503-867-2304
jennifer@storychangesculture.com

The post Facebook, Google, Isovalent, Microsoft and Netflix Launch eBPF Foundation as Part of the Linux Foundation appeared first on Linux Foundation.

The Linux Foundation and Fintech Open Source Foundation Announce the Agenda for Open Source Strategy Forum London 2021, Oct 4-5

Wed, 08/11/2021 - 23:24

Experts from financial services, technology and open source will come together to deepen collaboration and drive innovation across the industry in order to deliver better code, faster.

SAN FRANCISCO, August 11, 2021 —  The Linux Foundation, the nonprofit organization enabling mass innovation through open source, and co-host Fintech Open Source Foundation (FINOS), a nonprofit whose mission is to accelerate adoption of open source software, standards and best practices in financial services, today announced the conference agenda for Open Source Strategy Forum London 2021 (OSSF). The event takes place October 4-5 in London, England. The schedule can be viewed here.

The event will gather experts from financial services, technology and open source who will come together for thought-provoking insights and conversations, providing unique opportunities to hear from and engage with those who are leveraging open source software to solve industry challenges. OSSF is the only conference dedicated to driving collaboration and innovation in financial services through open source.

The event will feature 35+ sessions and endless opportunities to learn about the most cutting edge topics at the cross section of finance, open source and technology, revealing recent developments and the direction of open source in financial services.

Conference Session Highlights:

  • An Open-sourced Solution to Data Governance? How Legend May Be the Answer to Data Quality Concerns in the Financial Industry – Ffion Acland & Beeke-Marie Nelke, Goldman Sachs
  • New Generation of Mainframers – John Mertic, The Linux Foundation; Jessielaine Punongbayan, Broadcom; and Alex Kim, Vicom Infinity
  • Open Banking, Open Source, and Open Standards – Kevin Morris, Large Credit Union Coalition
  • How to Maximize Open Source Investment to Drive Business Innovation – Traci Robinson-Williams, GitLab
  • If It’s Such a Good Idea, Why Haven’t We Been Doing It? – Gil Yehuda, U.S. Bank
  • Develop Automated Workflows in Seconds – Olivier Poupeney, Symphony Communication Services

Registration is offered at the early price of 220 GBP through Aug 17. Members of The Linux Foundation receive a 20 percent discount – members can contact events@linuxfoundation.org to request a member discount code. Members of FINOS can attend at no cost – members can contact ossf@finos.org to request the FINOS Member registration code. 

Health and Safety
In-person attendees will be required to be fully vaccinated against the COVID-19 virus and wear a mask while onsite at the event. Additionally, all attendees will need to comply with all on-site health measures, in accordance with The Linux Foundation Code of Conduct. To learn more, visit the Health & Safety webpage and read our blog post.

Diversity & Need-Based Scholarships and Travel Funding
Applications for diversity and need-based scholarships are currently being accepted here. The Linux Foundation’s Travel Fund is also accepting applications, with the goal of enabling open source developers and community members to attend events that they would otherwise be unable to attend due to a lack of funding. We place an emphasis on funding applicants who are from historically underrepresented or untapped groups and/or those of lower socioeconomic status. To learn more and apply, click here.

Sponsor
For information on becoming an event sponsor, click here or email us for more information and to speak to our team. The Sponsorship deadline is September 9. 

Press
Members of the press who would like to request a press pass to attend should contact Kristin O’Connell.

About the Linux Foundation
Founded in 2000, the Linux Foundation is supported by more than 2,000 members and is the world’s leading home for collaboration on open source software, open standards, open data, and open hardware. Linux Foundation’s projects are critical to the world’s infrastructure including Linux, Kubernetes, Node.js, and more. The Linux Foundation’s methodology focuses on leveraging best practices and addressing the needs of contributors, users and solution providers to create sustainable models for open collaboration. For more information, please visit linuxfoundation.org.

The Linux Foundation Events are where the world’s leading technologists meet, collaborate, learn and network in order to advance innovations that support the world’s largest shared technologies.

Visit our website and follow us on Twitter, Linkedin, and Facebook for all the latest event updates and announcements.

The Linux Foundation has registered trademarks and uses trademarks. For a list of trademarks of The Linux Foundation, please see its trademark usage page: www.linuxfoundation.org/trademark-usage. Linux is a registered trademark of Linus Torvalds. 

###

Media Contact
Kristin O’Connell
The Linux Foundation
koconnell@linuxfoundation.org

The post The Linux Foundation and Fintech Open Source Foundation Announce the Agenda for Open Source Strategy Forum London 2021, Oct 4-5 appeared first on Linux Foundation.

Funded open source security work at the Linux Foundation

Wed, 08/11/2021 - 00:00

Open source software (OSS) is vitally important to the functioning of society today; it underpins much of the global economy. However, some OSS is highly secure, while others are not as secure as they need to be.

By its very nature, open source enables worldwide peer review, yet while its transparency has the potential for enhanced software security, that potential isn’t always realized. Many people are working to improve things where it’s needed. Most of that work is done by volunteers or organizations outside the Linux Foundation (LF) who directly pay people to do the work (typically as employees). Often those people work together within a foundation that’s part of the Linux Foundation. Sometimes, however, the LF or an LF foundation/project (e.g., a fund) directly funds people to do security work.

At the Linux Foundation (LF), I have the privilege of overseeing focused work to improve OSS security by the very people paid to do it. This work is funded through various grants and foundations, with credits to organizations like Google, Microsoft, the Open Source Security Foundation (OpenSSF), the LF Public Health foundation, and the LF itself.

The LF and its foundations do much more that I don’t oversee, so I’ve only listed the ones I am personally involved with in the interest of brevity. I hope it will give you a sense of some of the things we’re doing that you might not know about otherwise.

The typical LF oversight process for this work is described in “Post-Approval LF Security Funding.” Generally, performers must provide a periodic summary of their work so they can get paid. Most of those summaries are public, and in those cases, it’s easy for others to learn about their interesting work!

Here’s a sample of the work I oversee:

  • Ariadne Conill is improving Alpine Linux security, including significant improvements to its vulnerability processing and making it reproducible. For example, as noted in the July 2021 report, this resulted in Alpine 3.14 being released with the lowest open vulnerability count in the final release in a long time. Alpine Linux’s security is important because many containers use it. For more information, see “Bits relating to Alpine security initiatives in June” and “Bits relating to Alpine security initiatives in July.”
  • kpcyrd is doing a lot of reproducible build work on Linux distributions, especially Alpine Linux (including on the Raspberry Pi) and Arch Linux. Reproducible builds are a strong countermeasure against build system attacks (such as the devastating attack on SolarWinds Orion). More than half of the currently unreproducible packages in Arch Linux have now been reviewed and classified.
  • David Huseby has been working on modifying git to have a much more flexible cryptographic signing infrastructure. This will make it easier to verify the integrity of software source code; git is widely used to manage source code.
  • Theo de Raadt has also been receiving funding to secure the critical “plumbing” behind modern communications infrastructure:
    • This funding is being used towards improving OpenSSH (a widely-used tool whose security is critical). These include various smaller improvements, an updated configuration file parser, and a transition to using the SFTP protocol rather than the older RCP protocol inside the scp(1) program.
    • It is also being used to improve rpki-client, implementing Resource Public Key Infrastructure (RPKI). RPKI is an important protocol for protecting the Internet’s routing protocols from attack. These improvements implement the RPKI Repository Delta Protocol (RRDP) data transfer protocol and fix various edge cases (e.g., through additional validation checks). The https://irrexplorer.nlnog.net/ service is even using rpki-client behind the scenes.
  • Nathan Chancellor is improving the Linux kernel’s ability to be compiled with clang (instead of just gcc). This includes eliminating warning messages from clang (which helps to reduce kernel bugs even when gcc is used) and fixing/extending the clang compiler (which helps clang users when compiling code other than the Linux kernel). Unsurprisingly this involves changing both the Linux kernel and the clang/LLVM compiler infrastructure, and sometimes other software as well.
    • In the long run, eliminating warnings that by themselves aren’t bugs is important; developers will ignore warnings if there are many irrelevant ones, but if there are only a few warnings, they’ll examine them (making warnings more useful).
    • Of notable mention for security implications is clang support for Control-Flow Integrity (CFI); this can counter many attacks on arm64, and work will eventually enable x86_64 support.
  • I oversee some security audits conducted via the Open Source Technology Improvement Fund (OSTIF) when funded through the LF. We (the LF) often work with OSTIF to conduct security audits. We work with OSTIF to define the audit scope, and then OSTIF runs a bidding process where qualified security audit firms propose to do the work. We then work with OSTIF to select the winner (who isn’t always the cheapest — we want good work, not a box-check). OSTIF & I then oversee the process and review the final result. 
    • Note that we don’t just want to do audits, we also want to fix or mitigate any critical issues the audits identify, but the audits help us find the key problems. Subject matter experts perform the audit reports, and handling bidding is OSTIF’s primary focus, so my main contribution is usually to help ensure these reports are clear to non-experts while still being accurate. Experts sometimes forget to explain their context and jargon, and it’s sometimes hard to fix that (you must know the terminology & technology to explain it).
    • This work included two security audits related to the Linux kernel, one for signing and key management policies and the other for vulnerability reporting and remediation. 
    • I’ve also overseen audits of the exposure notification applications COVID Shield and COVID Green: 
    • It’s not part of my oversight of OSTIF on behalf of the LF, but I also informally talk with OSTIF about other OSS they’re auditing (such as flux2, lodash, jackson-core, jackson-databind, httpcomponents-core, httpcomponents-client, laravel, and slf4j). A little coordination and advice-sharing among experts can make everything better.

The future is hard to predict, but we anticipate that we will be doing more. In late July, the OpenSSF Technical Advisory Council (TAC) recommended approving funding for a security audit of (part of) Symfony, a widely-used web framework. The OpenSSF Governing Board (GB) approved this on 2021-08-05 and I expect OSTIF will soon take bids on it.

The OpenSSF is also taking steps to raise more money via membership dues (this was delayed due to COVID; starting a new foundation is harder during a pandemic). Once the OpenSSF has more money, we expect they’ll be funding a lot more work to identify critical projects, do security audits, fix problems, and improve or create projects to enhance OSS security. The future looks bright.

Please remember that this is only a small part of ongoing work to improve OSS security. Almost all LF projects need to be secure, so most foundations’ projects include security efforts not listed here. As noted earlier, most development work is done by volunteers or by non-LF organizations directly paying people to do the work (typically employees). 

The OpenSSF has several working groups and many projects where people are working together to improve OSS security. These include free courses on how to develop secure software and the CII Best Practices badge project. We (at the LF) also have many other projects working to improve OSS security. For example, sigstore is making cryptographic signatures much easier; sigstore’s “cosign” tool just released its version 1.0. Many organizations have recently become interested in software bill-of-materials (SBOMs), and we’ve been working on SBOMs for a long time.

If you or your organization would like to fund focused work on improving OSS security, please reach out! You can contribute to the OpenSSF (in general or as a directed fund); just contact them (e.g., Microsoft contributed to OpenSSF in December 2020). If you’d prefer, you can create a grant directly with the Linux Foundation itself — just email me at <dwheeler@linuxfoundation.org> if you have questions. For smaller amounts, say to fund a specific project, you can also consider using the LFX crowdfunding tools to fund or request funding. Many people & organizations struggle to pay individual OSS developers because of the need to handle taxes and oversight. If that’s your concern, talk to us. The LF has experience & processes to do all that, letting experts focus on getting the work done.

My sincere thanks to all the performers for their important work and to all the funders for their confidence in us!

About the author: David A. Wheeler is Director of Open Source Supply Chain Security for The Linux Foundation.

The post Funded open source security work at the Linux Foundation appeared first on Linux Foundation.

Vaccines + Masks for Safe In-Person Events – Read About All On-Site Safety Protocols

Thu, 08/05/2021 - 03:55

The Linux Foundation is ecstatic to return to in-person events next month; we know how important these face-to-face gatherings are to accelerating collaboration and innovation in the open source community. 

We know you have questions surrounding health and safety at in-person events and want to pause for a moment to address these. Rest assured – your health has been at the forefront of every move and decision we have made as we make a safe return back to in-person events.  

Let’s start here with some items from behind the scenes.

  • The LF has a long-standing relationship with Dr. Joel Selanikio, a physician, former CDC epidemiologist and outbreak investigator, and consultant epidemiologist to the DC Department of Health and to FEMA for the COVID-19 response over 2020-21. Thanks to Dr. Selanikio’s council over the last two years, we have been able to take educated and well-thought out steps to ensure the safety of our community members as we navigate COVID-19. 
  • We are working closely with local Departments of Health to ensure we are following all local requirements and recommendations. 
  • We are continuing to monitor and follow all CDC, WHO and PHE/NHS (in the UK) guidelines, in addition to those of the local municipalities in which we are holding events.
  • We are checking in with our venues and vendors multiple times a week to ensure we are staying up-to-date on best practices and regulations.
  • Finally, The Linux Foundation Event Team have all been certified in handling Pandemic On-Site Protocols (by the Event Leadership Institute). The team is vaccinated, trained and equipped to handle safety protocols and procedures at our events and are more than happy to assist you onsite and ensure you are comfortable.  

Vaccines, masks and everyone’s new favorite phrase: social distancing.

  • As announced previously, in-person attendees will be required to be fully vaccinated against the COVID-19 virus. A vaccine verification app will be used to confirm vaccination status.
  • Additionally, masks will now be required for in-person attendance.
  • All event participants will receive a daily temperature check in order to enter the event zone and will receive a sticker to be able to enter and exit as needed.
  • Comfort level wristbands (in green, yellow, and red) will be provided for event participants to use if they choose to indicate their preference on social distancing comfort level. 

All of the above protocols are in place for LF and LF Project events (like KubeCon + CloudNativeCon) through November 2021.

We are working closely with each of our venues and their local jurisdictions to ensure we are following all local requirements and recommendations. Here are some items you can expect on-site at any of our events through November:

  • Reduced conference room capacity: space between you and your neighbors.
  • More physical space between speakers and attendees: so speakers can present without their masks (and you can hear them clearly!).
  • Wider aisles and thoroughfares through event spaces.
  • Sponsor booths spread further apart in the exhibit hall as well as wider aisles. 
  • Socially distanced areas for eating/drinking and mask breaks
  • Close organization with venues: to ensure rigorous onsite cleaning and sanitizing of all touch points, sneeze guards where necessary, and sanitation stations.

You can view a full list of onsite safety procedures on the Health and Safety page, under the “Attend” tab on all event microsites at events.linuxfoundation.org.

Quick Links

View Open Source Summit + ELC + OSPOCon Health and Safety page

View Open Networking + Edge Summit & Kubernetes on Edge Day Health and Safety page

View KubeCon + CloudNativeCon Health and Safety page

We are keeping our health and safety guidelines updated regularly, and adding to the FAQ as necessary.  If these resources do not answer a question you may have, reach out to us at events@linuxfoundation.org.

After much research and with guidance from Dr. Selanikio, we believe the combination of vaccination and mask requirements, along with the other protocols we are putting in place, provides a safe environment for our in-person event participants.

We understand that not everyone will be able to join us in-person due to a variety of factors, which is why we are delighted to offer attendees the ability to participate in our events virtually. To learn more about the different pass options, click on the “Register” tab on any of our event websites.

We hope this information brings you assurance that keeping you and all our event participants safe is top of mind – and will continue to be as we make each and every decision. A big THANK YOU to the entire open source community for your understanding during this fluid COVID-19 situation and this very challenging time in our history. We look forward to seeing you at our events this fall!

The post Vaccines + Masks for Safe In-Person Events – Read About All On-Site Safety Protocols appeared first on Linux Foundation.

EdgeX Foundry Releases the Most Modern, Secure, and Production-Ready Open Source IoT Framework

Wed, 08/04/2021 - 00:00

Four-plus years of collaboration, 190+ contributors, 8 million+ container downloads, new retail project ORRA, EdgeX Ready, and foundation for future, long-term support pave the way for Ireland release

SAN FRANCISCOAugust 3, 2021 EdgeX Foundry, a project under the LF Edge umbrella organization within the Linux Foundation, today announced it’s Ireland release. Focused on edge/IoT solutions, EdgeX Foundry’s second major release overhauls API sets, removes technical debt, provides more message-based communications, and simplifies and secures interface for adopters and developers, making the platform significantly easier to use and more reliable. 

“As a leading stage 3 project under LF Edge, the EdgeX Ireland release has expanded use cases across retail, building automation, smart cities, process control, and manufacturing,” said Arpit Joshipura, general manager, Networking, Edge & IoT, at the Linux Foundation. “It’s a key to standardizing IoT frameworks across market verticals.”

“This release sets in motion the opportunity for EdgeX to offer its first ever LTS or long-term support release as soon as the fall.  This is a significant commitment on the part of our open-source community to all adopters that says we stand with you, prepared to help support your use of EdgeX in real world, scalable, production deployments,” said Jim White, chief technical officer,  IoTech,  and EdgeX Foundry Technical Steering Committee Chair. 

Ireland Feature Highlights

  • Standardized and modernized northbound and southbound APIs enrich ease of interoperability across the IoT framework
  • Advanced security is built into the APIs, message bus, and internal architecture of EdgeX
  • New device services (southbound) and new app services (northbound) included in Ireland are also inherently secure (e.g., GPIO, CoAP, LLRP, UART)

Commercialization & Use Case Highlights

  • Open Retail Reference Architecture (ORRA): a new sub-project that provides a common deployment platform for edge-based  solutions and IoT devices. ORRA is a collaboration with fellow LF Edge projects Open Horizon and Secure Device Onboard, incubated by EdgeX Foundry.
  • The new Edgex Ready program highlights users and organizations that have integrated their offerings with solutions leveraging EdgeX;  a precursor to a community certification program. Learn how to become EdgeX Ready through the project’s Wiki page

Learn more about Ireland’s feature enhancements in this blog post

Plans for the next EdgeX release, codenamed ‘Jakarta’ are expected in Q4’ of 2021. 

For more information about LF Edge and its projects, visit https://www.lfedge.org/

About the Linux Foundation

Founded in 2000, the Linux Foundation is supported by more than 1,000 members and is the world’s leading home for collaboration on open source software, open standards, open data, and open hardware. Linux Foundation’s projects are critical to the world’s infrastructure including Linux, Kubernetes, Node.js, and more.  The Linux Foundation’s methodology focuses on leveraging best practices and addressing the needs of contributors, users and solution providers to create sustainable models for open collaboration. For more information, please visit us at linuxfoundation.org.

The Linux Foundation has registered trademarks and uses trademarks. For a list of trademarks of The Linux Foundation, please see our trademark usage page: https://www.linuxfoundation.org/trademark-usage. Linux is a registered trademark of Linus Torvalds.

Additional Quotes and Community Support

”Beechwoods Software has been a contributing member of EdgeX Foundry since its inception and chairs the Certification Working Group. EdgeX technology is at the core of our EOS IoT Edge platform offering for which we are readying our version 2 release based on the latest EdgeX code base. Beechwoods is pleased with the growing momentum of EdgeX Foundry and look forward to continuing our support and collaboration,” said Michael Daulerio, Vice President of Marketing and Business Development at Beechwoods Software, Inc.

“Canonical is a founding member of the EdgeX Foundry project and has provided technical leadership in the technical steering committee from day one. The Ireland (aka 2.0) release of EdgeX introduces much improved V2 REST APIs, a transition to a secure message bus for data ingestion, and many additional improvements to the security of EdgeX. The cross-company cooperation that contributed to the success and timeliness of this release once again demonstrates the power of open source development. Snaps of the Ireland release of EdgeX are available from the Snap Store using the new 2.0 track, and can be used to build secure enterprise-grade EdgeX deployments using Ubuntu Core 20,” said Tony Espy, technical architect / IoT & Devices, Canonical, and at-large  EdgeX Foundry TSC member. 

“EdgeX Foundry continues to serve as the basis for our Edge Xpert product.  As such, we see the release of EdgeX 2.0 as critical to our company’s success in support of our customers.  It provides the ability for IOTech to add new features and add more value given the new APIs, support for more messaging and overall simplifications of the platform.  On top of that, the move toward an LTS release in the fall based on EdgeX 2.0 is an important milestone of support shown by the EdgeX community.  LTS tells adopters like IOTech that the EdgeX ecosystem stands behind them and is there to provide a scalable, reliable, and robust platform that can be used in production ready solutions,” said Keith Steele, CEO, IOTech Systems. 

Resources:

The post EdgeX Foundry Releases the Most Modern, Secure, and Production-Ready Open Source IoT Framework appeared first on Linux Foundation.

Keynote Speakers and Conference Schedule Announced for Open Networking & Edge Summit + Kubernetes on Edge Day 2021

Thu, 07/29/2021 - 23:49

Hosted by The Linux Foundation, along with LF Networking, LF Edge and the Cloud Native Computing Foundation, this is the industry’s premier open networking & edge computing event gathering developers, architects and business leaders across enterprises, government, global services providers and cloud for education, inspiration and collaboration.

SAN FRANCISCO, July 29, 2021 —  The Linux Foundation, the nonprofit organization enabling mass innovation through open source, along with co-hosts LF Edge, LF Networking, and Cloud Native Computing Foundation (CNCF) today announced the full schedule for Open Networking & Edge Summit + Kubernetes on Edge Day. The events are taking place October 11-12 in Los Angeles, California and are being co-located with KubeCon + CloudNativeCon North America, among others. The schedule can be viewed here.

Open Networking & Edge Summit (ONE Summit) is THE event for End to End Connectivity Solutions powered by Open Source. It enables the collaborative development necessary to shape the future of networking and edge computing; between companies, across industry verticals and between developers, architects and business leaders. 

Kubernetes on Edge Day, held alongside ONE Summit, gathers developers and adopters to share lessons learned in building, breaking, and bettering their edge infrastructure on top of Kubernetes.

The events will feature an extensive program of 80+ talks covering the most important and timely topics across networking & edge and business & technical sessions. Conference session tracks include: Enterprise Networking & Edge, Cloud Networking & Edge, Kubernetes on Edge, The New Service Provider (Open Core, Unified Edge & Universal Access) and Business Critical & Innovation.

“This year’s ONE Summit will once again bring together industry luminaries, representing edge, core, cloud, enterprise, RAN, and more,” said Arpit Joshipura, General Manager, Networking, Edge, and IoT, The Linux Foundation. “With both in-person and hybrid options for attending, this year’s event promises to be even more collaborative and inspiring than ever.”

Confirmed Keynote Speakers:

  • Koby Avital, Executive Vice President of Technology Platforms, Walmart
  • Yves Bellégo, Director Network Strategy, Orange
  • Srini Kalapala, VP – Technology Strategy and Network Cloud, Verizon
  • Reg Orton, Chief Technology Officer, BRCK
  • Shah Rahman, Engineering Lead, Facebook
  • Priyanka Sharma, General Manager, Cloud Native Computing Foundation

Additional keynote speakers will be announced shortly.

Conference Session Highlights:

  • Living the Dream: Achieving Cloud Native Network Function Deployment at the Edge – John Belamaric & Stephen Wong, Google (Enterprise Networking & Edge Track)
  • Choosing from the Many Flavors of Edge – KubeEdge, OpenYurt, K3S, and K8S – Malini Bhandaru & Enyinna Ochulor, VMware; Yin Ding, Futurewei; Itohan Ukponmwan, Salesforce; and Fei Guo, Alibaba (Kubernetes on Edge Day)
  • Building Modern Cloud-Native Network Services with ONAP – Ranny Haiby, Samsung; Catherine Lefèvre, AT&T; Łukasz Rajewski, Orange; Seshu Kumar, Huawei; and Byung-Woo Jun, Ericsson (The New Service Provider Track)
  • Brewing Coffee Beyond the Edge: A Hardware Engineer’s Guide to Kubernetes – Pedro Leao da Cruz & Alex Chalkias, Canonical (Kubernetes on Edge Day)
  • 5G – Prioritizing Security Now – Brian C. Newman, Verizon (Business Critical & Innovation Track)
  • Lessons Learned from Cloud-Native Design of Network Functions – Xuxia Zhong & Qihui Zhao, China Mobile (Cloud Networking & Edge Track)

Registration (in-person) is offered at the early price of US$950 through Aug 4. In-Person Academic and Hobbyist Passes are available for US$575 and Student Passes for US$275. Registration to attend virtually is US$50 for all attendee types.

Members of The Linux Foundation, LF Networking, LF Edge and CNCF receive a 20 percent discount off registration and can contact events@linuxfoundation.org to request a member discount code. 

Attendees looking to attend ONE Summit + Kubernetes on Edge Day and KubeCon + CloudNativeCon can register for all events through the KubeCon + CloudNativeCon registration form and add their ONE Summit registration at a discounted rate (US$599 for Corporate or US$399 for Individual or Academic).

Diversity & Need-Based Scholarships and Travel Funding
Applications for diversity and need-based scholarships are currently being accepted here. The Linux Foundation’s Travel Fund is also accepting applications, with the goal of enabling open source developers and community members to attend events that they would otherwise be unable to attend due to a lack of funding. We place an emphasis on funding applicants who are from historically underrepresented or untapped groups and/or those of lower socioeconomic status. To learn more and apply, click here.

Health and Safety
In-person attendees will be required to be fully vaccinated against the COVID-19 virus and will need to comply with all on-site health measures, in accordance with The Linux Foundation Code of Conduct. To learn more, visit the Health & Safety webpage and read our blog post.

Sponsor
Open Networking & Edge Summit + Kubernetes on Edge Day is made possible thanks to our sponsors, including Diamond Sponsor: Intel, Platinum Sponsor: IBM, and Gold Sponsor: Cloud Native Computing Foundation. For information on becoming an event sponsor, click here or email us for more information and to speak to our team.

Press
Members of the press who would like to request a press pass to attend should contact Kristin O’Connell.

About the Linux Foundation
Founded in 2000, the Linux Foundation is supported by more than 2,000 members and is the world’s leading home for collaboration on open source software, open standards, open data, and open hardware. Linux Foundation’s projects are critical to the world’s infrastructure including Linux, Kubernetes, Node.js, and more. Learn more at linuxfoundation.org.

About LF Networking
LF Networking is the umbrella organization fostering collaboration and innovation across the entire open networking stack. LFN software and projects provide platforms and building blocks for Network Infrastructure and Services across Service Providers, Cloud Providers, Enterprises, Vendors, and System Integrators enabling rapid interoperability, deployment, and adoption. Learn more at lfnetworking.org.

About LF Edge
LF Edge is an umbrella organization for open source projects that aims to establish an open, interoperable framework for edge computing independent of hardware, silicon, cloud, or operating system. It fosters collaboration and innovation across a range of industry verticals, all of which stand to be transformed by edge computing. Learn more at lfedge.org.

About Cloud Native Computing Foundation
Cloud native computing empowers organizations to build and run scalable applications with an open source software stack in public, private, and hybrid clouds. The Cloud Native Computing Foundation (CNCF) hosts critical components of the global technology infrastructure, including Kubernetes, Prometheus, and Envoy. Learn more at cncf.io.

Linux Foundation Events are where the world’s leading technologists (90,000 a year) join together to learn, share and collaborate in order to advance innovations that support the world’s largest shared technologies. Visit our website and follow us on Twitter, Linkedin, and Facebook for all the latest event updates and announcements.

The Linux Foundation has registered trademarks and uses trademarks. For a list of trademarks of The Linux Foundation, please see its trademark usage page: www.linuxfoundation.org/trademark-usage. Linux is a registered trademark of Linus Torvalds. 

###

Media Contact
Kristin O’Connell
The Linux Foundation
koconnell@linuxfoundation.org

The post Keynote Speakers and Conference Schedule Announced for Open Networking & Edge Summit + Kubernetes on Edge Day 2021 appeared first on Linux Foundation.

Announcing new event focused on Building Cybersecurity into the Software Supply Chain, August 18, Virtual

Wed, 07/28/2021 - 03:24

Modern day supply chains leave greater potential for vulnerabilities, and supply chain security should be a high priority for organizations. Vulnerabilities could be catastrophic, and lead to unnecessary costs, inefficient delivery schedules and a loss of intellectual property. 

In addition, over the last few years, supply chains have increasingly been exposed as a major weak point in organizational security. While security may be top of mind within company walls, you are only as strong as your most vulnerable supplier.

We are excited to bring the community a new event where folks can learn directly from experts who have been working on how to solve these vulnerabilities for almost a decade, to find out how to best protect their supply chain and mitigate potential disaster.

Anyone involved in ensuring their company’s supply chain is secure including security professionals, executive leadership and tech leaders.

The event is free to attend, and will take place virtually on August 18. It is comprised of nine sessions covering all aspects of protecting the supply chain, including talks on:

  • Generating SBOMs for IoT at Build Time
  • Securing GCC & GLIBC
  • Building Signing, Distributing SPDX SBOMs as Artifact Reference Type
  • Software Supply Chain Integrity with Sigstore

View all sessions, speakers and register to attend here.

The post Announcing new event focused on Building Cybersecurity into the Software Supply Chain, August 18, Virtual appeared first on Linux Foundation.

The Linux Foundation, Prometeo, IBM, and Partners Announce New Firefighter Safety Open Source Project

Tue, 07/27/2021 - 23:31

Prometeo Platform S.L. is open sourcing ‘Pyrrha’ to monitor and act on firefighters’ health and safety as they battle blazes, with support from Samsung

SAN FRANCISCO — The Linux Foundation, the nonprofit organization enabling mass innovation through open source, today announced it will host Pyrrha, created and contributed by Prometeo Platform S.L., in collaboration with IBM to help accelerate the development and deployment of firefighter safety technology around the world. In 2019, Prometeo was named the winner of the Call for Code Global Challenge and since then their technology has been further developed with updated hardware and enhanced software through work with the IBM volunteer Service Corps and leading ecosystem partners.

Climate change has created more dangerous conditions for firefighters by increasing the risk and extent of wildfires around the world. From Australia’s 2020 brushfires, to record-breaking wildfires in Spain and the Western United States, fires in recent years have increased in number, severity, and destruction, while posing greater immediate and long-term health risks to firefighters who battle these blazes. According to Cal Fire, California is already experiencing a 26% increase in 2021 wildfire activity and a 58% increase in acres burned compared to 2020.

Through the Pyrrha open source project, Prometeo, the Linux Foundation, and IBM aim to accelerate innovation around firefighter health monitoring and safety. By partnering with leading companies from the Call for Code ecosystem like Samsung, the goal is to customize and scale the solution around the world in an effort to help save lives.

“Samsung and IBM have collaborated for many years to create industry leading technologies that solve challenging societal and business problems. Now we’re excited to work together to advance tech for good and help combat the effects of climate change,” said Executive Vice President of Samsung B2B Mobile KC Choi. “As a huge proponent of open source technology, we see Call for Code as a unique opportunity to deploy real world solutions based on open source technologies. We’re excited to be able to equip award-winning teams like Prometeo with resources to strengthen their solution as it is actively tested, deployed, and now made available in open source. We also look forward to increasing our own participation in Call for Code.”

The Prometeo solution was created by a nurse, a firefighter, and developers as a system that uses artificial intelligence and the internet of things to guard the safety of firefighters. Over the past two years through collaboration with Call for Code ecosystem partners, Prometeo has improved its technology across offline usage, through integration with mobile phones and watches to provided two-way alerts, and in capturing the averages of toxin exposure over time. Through field tests in Spain in early 2020 and 2021, the technology has incorporated firefighter feedback and amassed anonymized technical data to improve the solution end-to-end.

“Pyrrha is another example of the power of open source to accelerate technology innovation that can save lives,” said Mike Dolan, senior vice president and GM of Projects at the Linux Foundation. “We are happy to support and host the development of Pyrrha and the community that is building and using it.”

“On behalf of the Prometeo team, we want to extend our deepest thanks to our many partners who have contributed to improve this solution and help protect firefighters,” said Salome Valero, co-founder of Prometeo. “We set out to create technology that would equip firefighters with personalized monitoring of their exposure to toxic substances. Through the contributions of our partners and the open source community, that dream is becoming a reality through the Pyrrha open source project.”

In addition to the Linux Foundation, IBM and Samsung, Prometeo’s ecosystem partners in the Pyrrha community include a variety of leading tech companies and institutions:

  • Arrow Electronics has helped improve Prometeo’s IoT devices.
  • GRAF/Bombers de la Generalitat de Catalunya facilitated multiple rounds of field testing of  testing with Prometeo’s technology during controlled burns in Spain. 
  • The Pau Costa Foundation is helping connect Prometeo with a global community of firefighters, and exploring opportunities for further field testing.
  • Peli has contributed their expertise in creating firefighter gear to help enhance Prometeo’s hardware.
  • Universitat Autónoma de Barcelona has contributed lab access and technical expertise to help calibrate devices.

IBM and The Linux Foundation have a rich history of deploying projects that help drive progress in society through innovation. The winner of the 2018 Call for Code Global Challenge, Project OWL, contributed its IoT device firmware in March 2020 as the ClusterDuck Protocol. Since then, more than a dozen Call for Code deployment projects have been open sourced for communities that need them most, with solutions ranging from disaster-response, to mitigating climate change, and promoting racial justice.

The Pyrrha project community encourages new users to contribute and to deploy the software in new environments around the world. Priorities for short term updates include adapting the hardware for usage in new locations, improving the analysis of toxin exposure  over time, and further improving the mobile and smartphone capabilities. For more information, please visit: ​https://pyrrha-platform.org.

The 2021 Call for Code Global Challenge invites the world’s software developers and innovators to combat climate change with open source-powered technology. Call for Code’s diverse and like-minded global ecosystem of experts, companies, foundations, universities, and celebrities continues to expand. It includes UN World Food Programme Innovation Accelerator experts, Arrow Electronics, Black Girls Code, Caribbean Girls Hack, charity: water, Clinton Foundation, Clinton Global Initiative University, Heifer International, Ingram Micro, Intuit, Kode With Klossy, NearForm, United Nations Office for Disaster Risk Reduction, United Way, and World Institute on Disability.

For more information and to begin contributing, please visit: https://developer.ibm.com/callforcode/solutions/projects/get-started/ & https://github.com/Pyrrha-Platform

About Call for Code 
Developers have revolutionized the way people live and interact with virtually everyone and everything. Where most people see challenges, developers see possibilities. That’s why David Clark, the CEO of David Clark Cause, created Call for Code in 2018, and launched it alongside Founding Partner IBM and Charitable Partner UN Human Rights. Since then, Call for Code has scaled to include an annual University Challenge in addition to regional prizes and the creation of Call for Code for Racial Justice. This multi-year global initiative is a rallying cry to developers to use their mastery of the latest technologies to drive positive and long-lasting change across the world through code. Call for Code Global Challenge winning solutions are further developed, incubated, and deployed as sustainable open source projects to ensure they can drive positive change. To learn more about past winners and their progress, visit IBM Developer.

About The Linux Foundation

Founded in 2000, The Linux Foundation is supported by more than 1,000 members and is the world’s leading home for collaboration on open source software, open standards, open data, and open hardware. The Linux Foundation’s projects are critical to the world’s infrastructure including Linux, Kubernetes, Node.js, and more. The Linux Foundation’s methodology focuses on leveraging best practices and addressing the needs of contributors, users and solution providers to create sustainable models for open collaboration. For more information, please visit us at linuxfoundation.org.

###

The Linux Foundation has registered trademarks and uses trademarks. For a list of trademarks of The Linux Foundation, please see our trademark usage page:  https://www.linuxfoundation.org/trademark-usage. Linux is a registered trademark of Linus Torvalds.

Media Contact

Jennifer Cloer
for the Linux Foundation
503-867-2304
jennifer@storychangesculture.com

The post The Linux Foundation, Prometeo, IBM, and Partners Announce New Firefighter Safety Open Source Project appeared first on Linux Foundation.

The Linux Foundation Announces Conference Schedule for Open Source Summit + Embedded Linux Conference 2021

Thu, 07/22/2021 - 23:59

Premier open source event covering the most critical and innovative open source topics gathers developers and technologists both in-person and virtually this September.

SAN FRANCISCO, July 22, 2021 —  The Linux Foundation, the nonprofit organization enabling mass innovation through open source, today announced the full schedule for Open Source Summit + Embedded Linux Conference 2021, the leading conference for open source developers, technologists, and community leaders. The events are taking place September 27-30 in Seattle, Washington and are co-located with OSPOCon and Linux Security Summit, among others. The schedule can be viewed here and the keynote speakers can be viewed here.

OSS + ELC 2021 will feature a robust program of 250+ talks (keynote presentations, conference sessions, tutorials, and BoFs) covering the most essential and cutting edge topics touching open source today: Linux Systems, Dependability, AI & Data, DEI, Community Leadership, IoT, Cloud Infrastructure, Cloud Native Development, Databases, and of course, Embedded Linux. Plus the co-located OSPOCon, also announcing its conference agenda today, covers critical topics affecting open source program management offices. The events are being produced in a hybrid format, with both in-person and virtual participation available.

“These events cover the pivotal technologies at the core of software and hardware today, and shine a magnifying glass on innovation driving the change of tomorrow. This breadth of coverage, along with an audience ranging from students to kernel developers, is what makes this event a cornerstone gathering and learning place for the open source community,” says Angela Brown, SVP & General Manager of Events at The Linux Foundation. “We are so excited to gather in person with everyone again, and look forward to kicking off our fall schedule of in-person events in Seattle and engaging the community with wide ranging learning opportunities.”

Conference Session Highlights from Open Source Summit:

  • Wayfair Same-day Delivery: A Narrative in Painful Anecdotes about CI at Scale – Lelia Bray-Musso & Gary Preston White Jr., Wayfair 
  • EVE: A Secure API for the Edge that Delights App Developers – Kathy Giori, ZEDEDA Inc.
  • A Rolling Stable Kernel Model – Sasha Levin, Google
  • Functional Safety Basics for Open Source Software Developers – Nicole Pappler & Prof. Dr. Andreas Bärwald, AlektoMetis
  • Self-serve Feature Engineering Platform Using Flyte and Feast – Ketan Umare, Union.ai

From Embedded Linux Conference:

  • OP-TEE: When Linux Loses Control – Clément Léger, Bootlin
  • From an Idea to a Patch in the Linux Mainline – Marta Rybczynska, Syslinbit
  • Yocto Continuous Integration in a Kube – Joshua Watt, Garmin

And from OSPOCon:

  • Ensuring OSS License Compliance the Easy Way – Tony Aiuto, Google
  • Everything We’ve Learned from Three Years of Funding Open Source – Duane O’Brien, Indeed
  • MVG – Minimum Viable Governance for Your Organization’s Open Collaboration Needs – Ashley Wolf & Justin Colannino, GitHub

Registration (in-person) is offered at the early price of US$850 through July 27. Academic, Student and Hobbyist Passes are available for US$275. Registration to attend virtually is US$50. 

Members of The Linux Foundation receive a 20 percent discount off registration and can contact events@linuxfoundation.org to request a member discount code. 

Diversity & Need-Based Scholarships and Travel Funding
Applications for diversity and need-based scholarships are currently being accepted here. The Linux Foundation’s Travel Fund is also accepting applications, with the goal of enabling open source developers and community members to attend events that they would otherwise be unable to attend due to a lack of funding. We place an emphasis on funding applicants who are from historically underrepresented or untapped groups and/or those of lower socioeconomic status. To learn more and apply, click here.

Health and Safety
In-person attendees will be required to be fully vaccinated against the COVID-19 virus and will need to comply with all on-site health measures, in accordance with The Linux Foundation Code of Conduct. To learn more, visit the Health & Safety webpage and read our blog post.

Sponsor
Open Source Summit + Embedded Linux Conference 2021 is made possible thanks to our sponsors, including Diamond Sponsors: Google, IBM, Microsoft and Red Hat, Platinum Sponsors: Huawei, Snyk, and SUSE, and Gold Sponsors: Cloud Native Computing Foundation, SODA Foundation, Styra, WhiteSource and Witekio. For information on becoming an event sponsor, click here or email us for more information and to speak to our team.

Press
Members of the press who would like to request a press pass to attend should contact Kristin O’Connell.

About the Linux Foundation
Founded in 2000, the Linux Foundation is supported by more than 2,000 members and is the world’s leading home for collaboration on open source software, open standards, open data, and open hardware. Linux Foundation’s projects are critical to the world’s infrastructure including Linux, Kubernetes, Node.js, and more. The Linux Foundation’s methodology focuses on leveraging best practices and addressing the needs of contributors, users and solution providers to create sustainable models for open collaboration. For more information, please visit linuxfoundation.org.

The Linux Foundation Events are where the world’s leading technologists meet, collaborate, learn and network in order to advance innovations that support the world’s largest shared technologies.

Visit our website and follow us on Twitter, Linkedin, and Facebook for all the latest event updates and announcements.

The Linux Foundation has registered trademarks and uses trademarks. For a list of trademarks of The Linux Foundation, please see its trademark usage page: www.linuxfoundation.org/trademark-usage. Linux is a registered trademark of Linus Torvalds. 

###

Media Contact

Kristin O’Connell
The Linux Foundation
koconnell@linuxfoundation.org

The post The Linux Foundation Announces Conference Schedule for Open Source Summit + Embedded Linux Conference 2021 appeared first on Linux Foundation.

The Linux Foundation Announces Keynote Speakers for Open Source Summit + Embedded Linux Conference 2021

Fri, 07/16/2021 - 07:57

Premier event for open source developers and community will feature visionaries sharing insights on Machine Learning, Security, Linux, Gaming, Cloud, the Mars Ingenuity Mission and more.

SAN FRANCISCO, July 15, 2021The Linux Foundation, the nonprofit organization enabling mass innovation through open source, today announced the keynote speakers for Open Source Summit + Embedded Linux Conference 2021, taking place September 27-30 in Seattle, Washington. The events are being produced in a hybrid format, with both in-person and virtual participation available, and are co-located with OSPOCon and Linux Security Summit, among others.

Open Source Summit (OSS) is the leading conference for developers, architects and other technologists – as well as open source community and industry leaders – to collaborate, share information, learn about the latest technologies and gain a competitive advantage by using innovative open solutions. Embedded Linux Conference (ELC) is the leading, vendor-neutral technical conference for companies and developers using Linux in embedded and industrial IoT products. Over 4,000 are expected to participate in the event. 

Keynote speakers include:

  • Anima Anandkumar, Bren Professor of Computing and Mathematical Sciences, The California Institute of Technology (Caltech) & Director, Machine Learning Research, NVIDIA, sharing on machine learning.

  • Tim Canham, Software and Operations Lead for the Mars Helicopter, NASA’s Jet Propulsion Laboratory, discussing the use of Linux in the Mars Ingenuity mission.

  • Hilary Carter, Vice President of Research, and Jim Zemlin, Executive Director, The Linux Foundation, sharing insights on new initiatives at The Linux Foundation for the open source community.

  • Chris DiBona, Director of Open Source & Making and Science, Google

  • Heather E. McGowan, Future of Work Strategist, speaking on the future of work and the human capital era.

  • Todd Moore, Vice President – Open Technology and Developer Advocacy & Chief Technology Officer, DEG, IBM

  • Royal O’Brien, Game Tech Chief Evangelist, Amazon, speaking on the new Open 3D Engine Foundation.

  • Sanath Kumar Ramesh, Founder & Chief Executive Officer, OpenTreatments Foundation, sharing on OpenTreatment’s life-altering
    initiative.
  • Brent Schroeder, Head of Office of CTO, Americas Chief Technology Officer, SUSE

  • Window Snyder, Founder and Chief Executive Officer, Thistle Technologies, discussing IoT security.

  • Kate Stewart, Vice President of Dependable Embedded Systems and Dr. David A. Wheeler, Director of Open Source Supply Chain Security, The Linux Foundation, speaking on supply chain security.
  • Linus Torvalds, Creator of Linux & Git, in conversation with Dirk Hohndel, Vice President & Chief Open Source Officer, VMware, discussing 30 years of Linux.
  • Chris Wright, Senior Vice President and Chief Technology Officer, Red Hat

The full schedule of sessions will be announced on July 22, with additional keynotes also being announced in the coming weeks. 

Registration (in-person) is offered at the early price of $850 through July 27. Registration to attend virtually is $50. Members of The Linux Foundation receive a 20 percent discount off registration and can contact events@linuxfoundation.org to request a member discount code. Applications for diversity and need-based scholarships are currently being accepted. For information on eligibility and how to apply, please click here. The Linux Foundation’s Travel Fund is also accepting applications, with the goal of enabling open source developers and community members to attend events that they would otherwise be unable to attend due to a lack of funding. To learn more and apply, please click here.

Health and Safety
In-person attendees will be required to be fully vaccinated against the COVID-19 virus and will need to comply with all on-site health measures, in accordance with The Linux Foundation Code of Conduct. To learn more, visit the Health & Safety webpage and read our blog post.

Sponsor
Open Source Summit + Embedded Linux Conference 2021 is made possible thanks to our sponsors, including Diamond Sponsors: Google, IBM, Microsoft and Red Hat, Platinum Sponsors: Huawei, Snyk, and SUSE, and Gold Sponsors: SODA Foundation, Styra, WhiteSource and Witekio. For information on becoming an event sponsor, click here or email us for more information and to speak to our team.

Press
Members of the press who would like to request a press pass to attend should contact Kristin O’Connell.

About the Linux Foundation

Founded in 2000, the Linux Foundation is supported by more than 2,000 members and is the world’s leading home for collaboration on open source software, open standards, open data, and open hardware. Linux Foundation’s projects are critical to the world’s infrastructure including Linux, Kubernetes, Node.js, and more. The Linux Foundation’s methodology focuses on leveraging best practices and addressing the needs of contributors, users and solution providers to create sustainable models for open collaboration. For more information, please visit linuxfoundation.org.

The Linux Foundation Events are where the world’s leading technologists meet, collaborate, learn and network in order to advance innovations that support the world’s largest shared technologies.

Visit our website and follow us on Twitter, Linkedin, and Facebook for all the latest event updates and announcements.

The Linux Foundation has registered trademarks and uses trademarks. For a list of trademarks of The Linux Foundation, please see its trademark usage page: www.linuxfoundation.org/trademark-usage. Linux is a registered trademark of Linus Torvalds. 

###

Media Contact
Kristin O’Connell
The Linux Foundation
koconnell@linuxfoundation.org

The post The Linux Foundation Announces Keynote Speakers for Open Source Summit + Embedded Linux Conference 2021 appeared first on Linux Foundation.

Understanding US Export Controls and Open Source Projects: (2021 Update)

Fri, 07/16/2021 - 05:39

One of the greatest strengths of open source development is how it enables collaboration across the entire world. However, because open source development is a global activity, it necessarily involves making available software across national boundaries. Some countries’ export control regulations, such as the United States, may require taking additional steps to ensure that an open source project is satisfying obligations under local laws.

In July of 2020, The Linux Foundation published a whitepaper on how to address these issues in detail, which can be downloaded here. In 2021, the primary update in the paper is to reflect a change in the US Export Administration Regulations.

  • Previously, in order for publicly available encryption software under ECCN 5D002 to be not subject to the EAR, email notifications were required regardless of whether or not the cryptography it implemented was standardized.
  • Following the change, email notifications are only required for software that implements “non-standard cryptography”.

Please see the updated paper and the EAR for more specific details about this change.

The post Understanding US Export Controls and Open Source Projects: (2021 Update) appeared first on Linux Foundation.

Pages