System Architecture and Design

Presenters Ryan Lahfa Frederic Ruget Gautier LABADIE Source All Systems Go! 2025 🚀 Building a Secure Workstation: Lessons from Google’s S3S Team 💡 The pursuit of a truly secure and reliable workstation is a challenging one. It’s a constant balancing act between idealism and practicality, between the dream of a perfectly reproducible system and the realities of user needs and technical constraints. Recently, the S3S (Secure Systems) team at Google Cloud shared their journey in building a secure workstation environment, and the insights they’re gaining are incredibly valuable. Let’s dive in! ...

Presenters Dongsu Park Source All Systems Go! 2025 🚀 Revamping OS Updates: A Deep Dive into Fleck’s Rust Rewrite 🛠️ Keeping your operating system secure and up-to-date is crucial, but the underlying mechanics can be surprisingly complex. Today, we’re diving into a fascinating project: Fleck’s rewrite of its update engine in Rust. This isn’t just about writing new code; it’s about fundamentally rethinking how we handle OS updates, prioritizing security, minimalism, and maintainability. Let’s explore this journey! ...

Presenters Dan Čermák Source All Systems Go! 2025 🚀 Atomic Updates: A Glimpse into the Future of System Management 💾 Let’s face it: we’ve all been there. It’s Friday night, you scheduled those crucial system updates, and then… disaster. A failed update leaves your system in a half-baked, inconsistent state, kicking off a frantic emergency intervention. Dan’s presentation at the conference offered a fascinating look at a potential solution – a system where updates are atomic – meaning they either succeed completely or roll back cleanly. Let’s dive in! ...

Presenters Alberto Garcia Source All Systems Go! 2025 🚀 Level Up Your Linux Security with Dlock: A Deep Dive 💾 Are you looking for more granular control over your Linux system’s security? Do you want to move beyond simple password-based encryption? Then you’re in the right place! We’re diving into a fascinating new tool called Dlock, a project designed to bring enhanced full-disk encryption (FDE) capabilities to Linux, particularly for devices like the Steam Deck. Let’s explore what it is, how it works, and what the future holds. ...

Presenters Christian Brauner Source All Systems Go! 2025 Diving Deep into Linux Namespaces: A Look at PFDs and the Future of Containerization 🚀 Ever wondered how Linux manages containers and isolates processes? It’s a surprisingly intricate dance of kernel features, and the recent presentation by Christian Hoelzl, alongside David Howell and Joseph Saffer, offered a fascinating glimpse into the ongoing evolution. This isn’t just about making containers work; it’s about designing a kernel that’s flexible, secure, and adaptable. Let’s break down the key takeaways – it’s a journey worth taking! 🛠️ ...