OpenSource SecurityCon NA 2025

Presenters Justin Cappos Source OpenSource SecurityCon NA 2025 Bridging the Gap: How the Linux Foundation is Future-Proofing Tech Education 🚀 Ever feel like the tech world is moving at warp speed, leaving academia a few steps behind? You’re not alone! Many brilliant minds graduating from universities find themselves facing a curriculum that doesn’t quite align with the cutting-edge skills employers are desperately seeking. This disconnect can be frustrating for students, universities, and the industry alike. But what if there was a way to bridge this gap? ...

Presenters Emily Fox Source OpenSource SecurityCon NA 2025 Open Source Security: Navigating the Future with Core Principles 🚀 Hey tech enthusiasts! Emily Fox, Portfolio Security Architect at Red Hat, recently shared some incredibly insightful thoughts at Open Source Security Con, and we’re here to break it all down for you. In a world buzzing with new regulations and mind-bending technologies, Emily reminded us of the fundamental principles that have always been the bedrock of open source: autonomy, transparency, and collective action. These aren’t just buzzwords; they’re our compass for navigating the complex challenges ahead. ...

Presenters Hayden Blauzvern Marcela Melara Source OpenSource SecurityCon NA 2025 Taming the Software Supply Chain Chaos: A Journey Towards Interoperability 🤝 The world of software development is a vibrant ecosystem, but when it comes to securing our digital supply chains, things can get a little… messy. We’re drowning in a sea of formats, specifications, and tools, and it’s leaving many of us scratching our heads. But fear not, fellow tech enthusiasts! A recent deep dive, featuring insights from Hayden Blouse of Google’s open source security team and Marcella Malara, a researcher at Intel, is charting a course towards clarity and interoperability. 🚀 ...

Presenters John Kjell Source OpenSource SecurityCon NA 2025 Building Trust: Beyond Basic Provenance in Your Software Supply Chain 🚀 In today’s interconnected world, the security of our software supply chain is paramount. We rely on a complex web of dependencies, tools, and build processes, and a single weak link can have devastating consequences. This is why understanding and strengthening build provenance verification is no longer a nice-to-have, but an absolute necessity. We recently had the privilege of diving deep into this critical area with John Shell, a seasoned consultant at Control Plane and an active open-source maintainer, as he shed light on the nuances of the Supply-chain Levels for Software Artifacts (Salsa) framework and, more importantly, how to go beyond its standard attestations. ...

Presenters Jennifer Power Hannah Braswell Source OpenSource SecurityCon NA 2025 From Paperwork Nightmare to Automated Compliance: Unlocking Security with OSCAL 🚀 Tired of drowning in compliance documentation? Feeling the pain of manual checks and fragmented data that make maintaining a strong security posture feel like an impossible mission? You’re not alone! Jen Power and Hannah Brazwell from Red Hat recently took the stage to unveil a revolutionary approach to policy and compliance automation, and it’s all powered by OSCAL. Get ready to ditch the spreadsheets and embrace a future of traceable, automated security. ✨ ...