The Sched app allows you to build your schedule but is not a substitute for your event registration. You must be registered for Open Source Summit North America 2024 to participate in the sessions. If you have not registered but would like to join us, please go to the event registration page to purchase a registration.
This schedule is automatically displayed in Pacific Daylight Time (UTC/GMT -8). To see the schedule in your preferred timezone, please select from the drop-down menu to the right, above "Filter by Date."
IMPORTANT NOTE: Timing of sessions and room locations are subject to change.
6 months ago, a small flock of motivated OpenSSF volunteers took flight and started the Security Toolbelt special interest group. Known as “Toolbelters”, their mission is to identify a set of personas, use cases, capabilities, threats, patterns that span the software supply chain to mitigate OSS security threats. These patterns align OpenSSF and other OSS security tools as they apply to various combinations of personas, use cases, capabilities, and threats. Along the way, toolbelters perform gap analysis against current tools available to mitigate threats and identify where investment and resources are needed to close gaps. The outcome is a documented toolbelt spanning the software supply chain advocating for what tools to use when, and where, in the supply chain. At the end of this session, attendees will be able to identify tools from the OpenSSF toolbelt that apply to their area of interest in the Software Supply Chain. Attendees will also understand their participation opportunities to continue iterating on and building the toolbelt.
Christopher Robinson (aka CRob) is Director of Security Communications at Intel Product Assurance and Security CRob is a 42nd level Dungeon Master and a 25th level Securityologist. CRob has been involved in upstream open source security for a decade, and spent 6 years helping lead... Read More →
Sarah is a security innovation researcher at Dell Technologies, on the Product and Operations Global CTO Research & Development team. She leverages diverse experiences in cybersecurity, IT, defense, business, education and fine arts to research innovation to improve security by design... Read More →
John is responsible for open source at TestifySec, a software supply chain security startup. He is a maintainer for the Witness and Archivista sub-projects under in-toto. Additionally, John is an active contributor to CNCF's TAG Security and multiple projects within the OpenSSF. Before... Read More →