Cloud

Presenters Amir Montazery Source OpenSource SecurityCon NA 2025 Fortifying the Digital Frontier: A Decade of Open-Source Security Audits 🛡️✨ Open-source software is the bedrock of our digital world, powering everything from your favorite apps to critical infrastructure. But with great power comes great responsibility, especially when it comes to security. Amir Montazeri, Managing Director of the Open-Source Technology Improvement Fund (OTF), recently shared invaluable insights into how we can collectively bolster the security of these essential projects. Celebrating its 10th anniversary, OTF is at the forefront of this crucial mission, and their work with the Cloud Native Computing Foundation (CNCF) is a shining example of what can be achieved through dedicated collaboration. ...

Presenters Patrick Zielinski Aditya Sirish A Yelgundhalli Source OpenSource SecurityCon NA 2025 Fortifying Your Code: A Deep Dive into SLSA and GitHub for Unbreakable Software Supply Chains 🚀 In today’s interconnected digital world, the integrity of our software supply chain is paramount. We’ve all heard the alarming stories: compromised GitHub actions, hijacked organizations, and even vulnerabilities in widely used projects like PHP and Juniper. These incidents underscore a critical truth: a breach at the source code level can have devastating ripple effects. But fear not! The open-source community is tirelessly working to build stronger defenses, and at the forefront of this effort are SLSA and GitHub. ...

Presenters Hemanth Malla Source CiliumCon NA 2025 Unleashing the Power of eBPF: Cilium’s DNS Parsing Revolution 🚀 Hey tech enthusiasts! Ever found yourself frustrated by network policies that feel a bit… clunky? Especially when dealing with those ever-changing IP addresses tied to domain names? Well, get ready for some exciting news! Hemanth, a rockstar Cilium CNCF maintainer and principal engineer at Microsoft on the Azure container networking team, has just dropped a bombshell: Cilium can now parse DNS directly within eBPF! This isn’t just an incremental update; it’s a leap forward that promises to transform how we handle FQDN (Fully Qualified Domain Name) network policies. ...

Presenters Junyuan Zeng Wei Zhang Source OpenSource SecurityCon NA 2025 LinkedIn’s Identity Revolution: From Fragile PKI to Spire-Powered Security! 🚀 Ever feel like your security infrastructure is a house of cards? 🃏 That’s exactly where LinkedIn found itself a few years ago. Their homegrown Public Key Infrastructure (PKI) system, built on a basic Python server, was buckling under the weight of their massive microservice architecture. It was a system that screamed “legacy” – lacking scalability, standard identity formats, and the ability to efficiently manage certificates. Imagine trying to build a skyscraper on a sandcastle foundation! 🏗️ ...

Presenters Tyler Schade Source OpenSource SecurityCon NA 2025 From Bare Metal to Bulletproof: Securing Your Cloud-Native Kingdom with TPMs and SPIRE 🚀 The quest for secure, modern infrastructure is a constant battle, especially in the dynamic world of cloud-native. Geico Insurance, a company at the forefront of digital transformation, is tackling this challenge head-on, not just in the cloud, but right down to the foundational bare metal of their data centers. Tyler Shade, a Software Engineer at Geico, shared his team’s compelling journey into bootstrapping trust and building a truly secure, identity-first infrastructure. ...