All Systems Go! 2025

Presenters Timothée Ravier Pragyan Vitaly Kuznetsov Source All Systems Go! 2025 🚀 Securing the Future of Container Clusters: A Deep Dive into Secure Boot and Remote Attestation 🌐 The world of containerized applications is booming, but with that growth comes a critical need for robust security. Ever wondered how to guarantee that your container clusters boot up securely and haven’s been tampered with? A recent presentation explored a fascinating new approach using ComposerFS, offering a flexible and controlled alternative to traditional disk image-based systems. Let’s break down the key takeaways! ...

Presenters Ryan Lahfa Frederic Ruget Gautier LABADIE Source All Systems Go! 2025 🚀 Building a Secure Workstation: Lessons from Google’s S3S Team 💡 The pursuit of a truly secure and reliable workstation is a challenging one. It’s a constant balancing act between idealism and practicality, between the dream of a perfectly reproducible system and the realities of user needs and technical constraints. Recently, the S3S (Secure Systems) team at Google Cloud shared their journey in building a secure workstation environment, and the insights they’re gaining are incredibly valuable. Let’s dive in! ...

Presenters Jonathan Lebon Timothée Ravier Source All Systems Go! 2025 🚀 Fedora’s Bold Move: Bootable Containers for a Faster, More Reliable Future 🌐 Fedora is embarking on a fascinating and ambitious journey: transitioning to a system based on bootable containers. This isn’t your typical containerization – we’re not talking about running full operating systems inside containers. Instead, Fedora is reimagining how the entire root filesystem is managed and updated, and the implications are huge! Let’s dive into what this means and why it’s a game-changer. ...

Presenters Dongsu Park Source All Systems Go! 2025 🚀 Revamping OS Updates: A Deep Dive into Fleck’s Rust Rewrite 🛠️ Keeping your operating system secure and up-to-date is crucial, but the underlying mechanics can be surprisingly complex. Today, we’re diving into a fascinating project: Fleck’s rewrite of its update engine in Rust. This isn’t just about writing new code; it’s about fundamentally rethinking how we handle OS updates, prioritizing security, minimalism, and maintainability. Let’s explore this journey! ...

Presenters Dan Čermák Source All Systems Go! 2025 🚀 Atomic Updates: A Glimpse into the Future of System Management 💾 Let’s face it: we’ve all been there. It’s Friday night, you scheduled those crucial system updates, and then… disaster. A failed update leaves your system in a half-baked, inconsistent state, kicking off a frantic emergency intervention. Dan’s presentation at the conference offered a fascinating look at a potential solution – a system where updates are atomic – meaning they either succeed completely or roll back cleanly. Let’s dive in! ...