Open Source Summit Europe 2023: Full Schedule

September 19-21, 2023
Bilbao, Spain
View More Details & Registration
Note: The schedule is subject to change.

The Sched app allows you to build your schedule but is not a substitute for your event registration. You must be registered for Open Source Summit Europe 2023 to participate in the sessions. If you have not registered but would like to join us, please go to the event registration page to purchase a registration.

This schedule is automatically displayed in Central European Summer Time (UTC/GMT +2). To see the schedule in your preferred timezone, please select from the drop-down menu to the right, above "Filter by Date."

IMPORTANT NOTE: Timing of sessions and room locations are subject to change.

06:45 CEST

Scenic Bilbao Boat Tour

Meet at 6:45 at docks, activity from 7:00 – 8:00
Location: Bilboko Itsas Museoa, Ramón de la Sota Kaia, 1, 48013 Bilbo, Bizkaia, Spain
Registration Cost: Complimentary - We will do our best to accommodate all interested attendees, but please note that participation is on a first-come, first-served basis the morning of and there are limited seats available.

Embark on a captivating boat tour from the Bilboko Itsas Museoa (Maritime Museum Bilbao) pier, exploring the outskirts of the iconic Zubizuri Bridge. Departing at 7:00 in the morning and lasting approximately 1 hour, this tour offers panoramic views of the city and an up-close encounter with the architectural marvel of the city. Recorded guided tour provides insightful commentary as you sail through tranquil waters.

*Participants must be registered for Open Source Summit Europe 2023.

Thursday September 21, 2023 06:45 - 08:00 CEST
Bilboko Itsas Museoa Ramón de la Sota Kaia, 1, 48013 Bilbo, Bizkaia, Spain

Special Events / Exhibits / Breaks

07:30 CEST

Continental Breakfast

Thursday September 21, 2023 07:30 - 09:00 CEST
2nd Floor Foyer (Floor 2)

Special Events / Exhibits / Breaks

07:30 CEST

Registration & Badge Pick-up

Thursday September 21, 2023 07:30 - 16:30 CEST
Hall 1 (Floor 1)

Special Events / Exhibits / Breaks

07:30 CEST

Zen Zone

All attendees may feel free to use the Zen Zone as needed. It is a physical space where conversation and interaction are not allowed, where attendees can go if for any reason they can’t interact with other attendees at that time.

Thursday September 21, 2023 07:30 - 16:30 CEST
Room 3D (Floor 3)

Special Events / Exhibits / Breaks

07:30 CEST

Cloakroom

OSS EU 2023 Coat & Bag Check

Thursday September 21, 2023 07:30 - 17:00 CEST
Cloakroom (Floor 0)

Special Events / Exhibits / Breaks

09:00 CEST

Keynote: Welcome Back - Gabriele Columbro, Executive Director, FINOS & General Manager, Linux Foundation Europe

Speakers

Gabriele Columbro

General Manager, Linux Foundation Europe

Gabriele is an open source technologist at heart. He spent over 15 years building developer ecosystems to deliver value through open source across Europe and the US. He thrives on driving innovation both contributing to open source communities and joining commercial open source ventures... Read More →

Thursday September 21, 2023 09:00 - 09:15 CEST
Auditorium (Floor 2)

Keynote Sessions

09:15 CEST

Keynote: Software Security: _You_ are the Calvary - Cristina Bentué, Co-founder and COO, IriusRisk

Speakers

Cristina Bentué

Co-founder and COO, IriusRisk

I started my entrepreneurial adventure almost a decade ago, and this journey has lead me to become a voice in the ecosystem of Cybersecurity startups and scaleups, participating in several mentoring programs to empower girls and women in STEAM roles. As co-founder and Chief Operating... Read More →

Thursday September 21, 2023 09:15 - 09:30 CEST
Auditorium (Floor 2)

Keynote Sessions

Presentation Slides Attached Yes

09:35 CEST

Keynote: Contributing to Critical Open Source Projects: Lessons from PostgreSQL - Jonathan Katz, Principal Product Manager – Technical, Amazon Web Services

Amazon Web Services has increased its contributions to the open source PostgreSQL project dramatically over the past two years. Learn from PostgreSQL Core Team member Jonathan Katz about AWS contributions to the recent PostgreSQL 16 release, and our plans to contribute over the long term to help build a strong and sustainable PostgreSQL community.

Speakers

Jonathan Katz

Principal Product Manager - Technical, Amazon Web Services

Jonathan Katz is a Principal Product Manager – Technical on the Amazon RDS team and is based in New York. He is a Core Team member of the open source PostgreSQL project and an active open source contributor.

Thursday September 21, 2023 09:35 - 09:40 CEST
Auditorium (Floor 2)

Keynote Sessions

09:45 CEST

Keynote: Do Repeat Yourself - Designing Open-source Libraries for Modern Machine Learning - Patrick von Platen, Diffusers Team Lead, Hugging Face Open Source

Speakers

Patrick von Platen

Diffusers Team Lead, Hugging Face Open Source

Patrick von Platen is a team lead at Hugging Face, the creator of the Diffusers library and a core maintainer of the Transformers library. He specializes in generative AI for image, text, and audio.Before joining Hugging Face, Patrick conducted research in speech recognition at Uber... Read More →

Thursday September 21, 2023 09:45 - 10:00 CEST
Auditorium (Floor 2)

Keynote Sessions

Audience Level Intermediate

10:05 CEST

Keynote: Given the Choices We Have: The Power of Allyship - Fatima Sarah Khalid, Developer Evangelist, GitLab

Speakers

Fatima Sarah Khalid

Developer Evangelist, GitLab

Fatima is a Developer Evangelist at GitLab and the voice of the community. She loves coding challenges and storytelling. Before GitLab, she was a backend developer, Drupal core contributor, and mentoring lead. In 2018, she received the Women in Communications & Technology (WCT) Rising... Read More →

Thursday September 21, 2023 10:05 - 10:20 CEST
Auditorium (Floor 2)

Keynote Sessions

10:30 CEST

Coffee Break

Thursday September 21, 2023 10:30 - 11:00 CEST
Sponsor Showcase (Floor 0)

Special Events / Exhibits / Breaks

10:30 CEST

In Person Networking Meetings

Make Connections on the OSS EU Networking App!
Get matched with like-minded attendees, schedule 1:1 meetings in our dedicated networking area during breaks, explore the Virtual Job Board & more.

Step 1 - Sign in
Once onsite, scan the QR code on the back of your badge or download the Brella app on your phone.
Want to schedule meetings before the event? Look for login details in your OSS EU pre-event email a week before the event.

Step 2 - Get Matched
Create your profile and select your favorite topics and interests to get matched with like-minded attendees.

Step 3 - Book Meetings
Input your meeting availability, view your connections, and start requesting meetings by either choosing an open time slot on their schedule or chatting directly with the person to find a good time.

Step 4 - Connect!
Meet at your assigned table in our dedicated Networking Area inside the Sponsor Showcase. Meeting time slots are 15 minutes long.

Great job opportunities and great candidates start with great connections
Looking for a new career or a great candidate for an open role? Visit our job board inside the app to view job listings. Want to post an open role? Add them to this form and the event team will add them to the job board for you.

Also be sure to choose “Looking for a New Career” or “Interviewing for Open Positions” when selecting your interests so you can connect with the right people.

Thursday September 21, 2023 10:30 - 11:00 CEST
Sponsor Showcase (Floor 0)

Special Events / Exhibits / Breaks

10:30 CEST

Sponsor Showcase

Thursday September 21, 2023 10:30 - 16:35 CEST
Sponsor Showcase (Floor 0)

Special Events / Exhibits / Breaks

10:35 CEST

Ask the Expert Session with Kate Stewart, VP Dependable Embedded Systems at The Linux Foundation, about SBOMs

Ask the Expert Session: Sit down with open source experts to gain knowledge 1:1 and ask all your pressing questions!

Ask Kate Stewart about SBOMs.

No sign-up necessary

Speakers

Kate Stewart

VP Dependable Embedded Systems, Linux Foundation

Kate Stewart works with the safety, security and license compliance communities to advance the adoption of best practices into embedded open source projects. Kate was one of the founders of SPDX, and is currently the specification coordinator. She is also the co-lead for the NTIA... Read More →

Thursday September 21, 2023 10:35 - 11:10 CEST
Sponsor Showcase (Floor 0)

Ask the Expert

10:35 CEST

Ask the Expert Session with Philipp Ahmann, Program Manager, Bosch, about about Linux (and OSS) in Safety-Critical Systems

Ask the Expert Session: Sit down with open source experts to gain knowledge 1:1 and ask all your pressing questions!

Ask Philipp Ahmann about Linux (and OSS) in Safety-Critical Systems.

No sign-up necessary

Thursday September 21, 2023 10:35 - 11:10 CEST
Sponsor Showcase (Floor 0)

Ask the Expert

10:35 CEST

Ask the Expert Session with Stephen Walli, Principal Program Manager, Microsoft, about Managing your Nonprofit Strategy

Ask the Expert Session: Sit down with open source experts to gain knowledge 1:1 and ask all your pressing questions!

Ask Stephen about Managing your Nonprofit Strategy.

No sign-up necessary!

Speakers

Stephen Walli

Principal Program Manager, Microsoft Inc

I am a principal program manager in the Azure Office of the CTO and adjunct faculty at Johns Hopkins University. I have worked with open source software in the product space for 30+ years. I have been a technical executive, a founder and consultant, a writer and author, a systems... Read More →

Thursday September 21, 2023 10:35 - 11:10 CEST
Sponsor Showcase (Floor 0)

Ask the Expert

11:00 CEST

Kubernetes Meets Confidential Computing - The Different Ways of Scaling Sensitive Workloads - Moritz Eckert, Edgeless Systems

As sensitive workloads increasingly move to the cloud, ensuring their security and privacy is paramount. K8s has become a popular platform for deploying and scaling containerized workloads, but protecting sensitive workloads against potential threats remains a challenge. In this talk, we'll explore how K8s and confidential computing (CC) can be combined to provide a secure and scalable platform for running sensitive workloads. We'll first introduce the concept of CC and its various technologies for protecting data and computations, and then dive into practical approaches for scaling sensitive workloads using K8s and open source CC solutions. We'll provide an overview of several open source projects and platforms that can be used to implement CC on K8s. We'll then discuss the benefits and limitations of each approach, and provide real-world examples of how these technologies can be used to protect sensitive workloads in the cloud. By the end of this talk, attendees will have a solid understanding of how K8s and CC can be used together to provide a secure and scalable platform for sensitive workloads in the cloud. They'll also gain insights and tips on how to implement and manage these technologies using open source tooling.

Speakers

Moritz Eckert

Chief Architect, Edgeless Systems

Moritz Eckert is Chief Architect at Edgeless Systems. He conducted research at EURECOM and UC Santa Barbara working on the next generation of Cyber Reasoning Systems. He joined Edgeless Systems in 2020 with the mission of making confidential computing scalable and accessible for everyone... Read More →

20230921 OSS Bilbao pdf

Thursday September 21, 2023 11:00 - 11:40 CEST
Room 0E-1 (Floor 0)

CloudOpen

Audience Level Any
Presentation Slides Attached Yes

11:00 CEST

AO.Space: An Open Source Solution for Personal Data Ownership - Wang Jianmin, Institute of Software Chinese Academy of Sciences

AO.space is a new open source project that aims to provide a solution for personal data ownership and protection. AO.space focuses on three foundational issues: account ownership, data ownership, and decentralization. With end-to-end encryption and device-based authentication, AO.space enables users to have complete control over their personal accounts and data, ensuring their privacy and security. Additionally, AO.space innovatively integrates decentralized accounts and platforms, combined with network acceleration technology, to enable fast access to personal data from anywhere at any time while ensuring personal data security and privacy. Leveraging Progressive Web App and cloud-native technology, AO.space has developed an integrated application ecosystem that includes both front-end and back-end components, making it easy for users to manage their personal data. With AO.space, users can have peace of mind knowing that their data is secure and protected, while still enjoying fast and easy access to their personal information.

Speakers

Wang Jianmin

Senior Software Engineer, Institute of Software Chinese Academy of Sciences

Wang Jianmin is an experienced engineer currently working at the Institute of Software Chinese Academy of Sciences in China. With over a decade of experience in research and development, he specializes in areas such as Java VM, Web Runtime, Virtualization, Embedded Systems, and data... Read More →

AO.Space An Open Source Solution for Personal Data Ownership EmergingOS pdf

Thursday September 21, 2023 11:00 - 11:40 CEST
Room 3G (3JAUREGIA - Floor 3)

Emerging OS Forum

Presentation Slides Attached Yes

11:00 CEST

Lightweight and Fast WiFi Access in Virtual Machines - Jim Huang, BiiLabs Co. Ltd. & En-Wei Wu, National Cheng Kung University

The vwifi virtual wireless device driver for Linux provides a simple interface for fundamental functions such as scanning a virtualized wireless network, connecting to it, and disconnecting from it. Based on the cfg80211 subsystem, which works with FullMAC drivers, vwifi utilizes the Linux network namespace to evaluate the network environment. The network namespace has its own paths, firewall rules, and network devices, which allows it to isolate a network environment from the host. With a minimal footprint and easy setup, vwifi is a practical solution for building wireless networking across virtual machines. This talk will discuss the creation of vwifi from the ground up and how its internals relate to virtualized environments. We will also explore how vwifi can be utilized to provide fast and reliable wireless access in virtualized environments. Check out the project page on GitHub for more information: https://github.com/sysprog21/vwifi .

Speakers

Jim Huang

CTO, BiiLabs Co., Ltd.

Jim is the leader of the engineering team at BiiLabs, where he focuses on building blockchain-based solutions. With a background in the Android Open Source Project, Jim specializes in real-time and performance tuning to optimize Linux-based automations. He is also a co-founder of... Read More →

En-Wei Wu

New Graduate, National Cheng Kung University

En-Wei is a computer science graduate with a bachelor's degree from National Cheng Kung University, Taiwan. His primary interests are in system software and Linux/FreeBSD kernel development. He has experience in Wi-Fi subsystems in Linux and FreeBSD. He has performed presentations... Read More →

vwifi – Lightweight and Fast WiFi Access in Virtual Machines pdf

Thursday September 21, 2023 11:00 - 11:40 CEST
Room 0E-2 (Floor 0)

LinuxCon

Presentation Slides Attached Yes

11:00 CEST

Sponsored Session: The Search for Transparency and Accountability in the Age of AI: RAI & XAI as Essential Tools - Ezequiel Lanza, Intel

Responsible AI and explainable AI (XAI) have emerged as crucial pillars in building ethical and trustworthy systems. This talk delves into the journey from responsible AI to XAI, exploring how these concepts intersect showcasing use cases and exploring open source frameworks.

RAI emphasizes the importance of fairness, transparency, accountability, and privacy in AI development. It addresses the risks associated with unchecked AI systems and promotes ethical practices. However, the challenge lies in interpreting and understanding the inner workings of complex AI models. This is where XAI comes into play.
XAI techniques provide a means to unravel the "black box" of AI decision-making, enabling better understanding and interpretability. By incorporating XAI, we can uncover biases, improve fairness, enhance accountability, and foster trust in AI systems. This talk will also explore a recent approach related with human-focused XAI.
Join me to explore the synergistic relationship between responsible AI and XAI, and unravel the path towards transparent, interpretable, and trustworthy AI systems.

Speakers

Ezequiel Lanza

AI Open Source Evangelist, Intel

Passionate about helping people discover the exciting world of artificial intelligence, Ezequiel is a frequent AI conference presenter and the creator of use cases, tutorials, and guides that help developers adopt open source AI tools.

Responsible AI Talk pdf

Thursday September 21, 2023 11:00 - 11:40 CEST
Room 0D-2-0D-3 (Floor 0)

Open AI & Data Forum

Presentation Slides Attached Yes

11:00 CEST

A Milestone for Open Source Security: How the Brand New ISO 18974 Certification Looks Like and Why the ISO 5230 Supports as a Stepping Stone - Katharina Grauf & Marcel Scholze, PwC GmbH

This presentation will take a closer look at the certification process for the brand new ISO 18974 and show the parallels to ISO 5230. As such, the talk will highlight the additional requirements for a compliant Open Source Security Management System to enable attendees to initiate their ISO 18974 compliance program. ISO 5230 for Open Source Compliance Management has arrived in the industry - and it's here to stay. The standard marks a significant milestone in the industry that has attracted the attention of executives, legal departments, compliance managers and developers alike. In the form of explicit requests from customers, as a request to suppliers, or in the context of current legislation on IT management. Although they have been in circulation for nearly three years, many people are still uncertain about their correct application. Nonetheless, by complying with ISO 5230, companies can lay the foundation for certification to ISO 18974, which is essential to building a robust and secure supply chain. The certification process for the new ISO 18974 requires an in-depth understanding of Open Source Software, its potential vulnerabilities, and effective security measures to mitigate the associated risks.

Speakers

Marcel Scholze

Head of OSS Services, PwC GmbH

Marcel Scholze is a computer scientist and has more than 20 years of experience in the IT sector. 2007 Marcel joined PwC and since then has been involved in consulting and audit projects in the field of IT sourcing and Open Source Software. Today he is a Director at PwC and the Head... Read More →

Katharina Grauf

Senior Associate OSS Services, PwC GmbH

Katharina Grauf is Senior Associate of the Open Source Services team at PwC Germany and is specialized in OSS Management and the design and implementation of respective governance systems. She has relevant expertise in the assessment and implementation of ISO conformant processes... Read More →

Thursday September 21, 2023 11:00 - 11:40 CEST
Room 3A (Floor 3)

Open Source Leadership Summit

11:00 CEST

Building SaaS Services with CHAOSS Technology to Evaluate Community Health and Sustainability - Daniel Izquierdo Cortázar, Bitergia & Yehui Wang, Huawei

CHAOSS is the leading community for understanding and analyzing open source health, defining actionable metrics/metrics models, and developing software such as Augur and GrimoireLab to make data-driven decisions. This talk will focus on the importance of embracing open source software and how a small community has been able to grow great SaaS solutions like OSS Compass, Bitergia Analytics, Augur, and even the early versions of Linux Foundation Insights. During this talk, we will focus on the original CHAOSS software (Augur and GrimoireLab) to illustrate the importance of open source in sharing and building knowledge together. We will also explore different options for open source software, such as Augur, OSS Compass, and Bitergia Analytics, which are based on GrimoireLab, as well as proprietary software like the initial version of Linux Foundation Insights, which was also based on GrimoireLab initially. Don't miss out on this opportunity to explore the world of OSS and learn more about its role in enabling collaboration and innovation across communities. Join us for an informative and engaging presentation!

Speakers

Daniel Izquierdo

CEO, Bitergia

Primary speaker bio: Daniel Izquierdo Cortázar is a researcher and one of the founders of Bitergia, a company that provides software analytics for open and InnerSource ecosystems. Currently holding the position of Chief Executive Officer, he is focused on the quality of the data... Read More →

Yehui Wang

Open Source Expert, Huawei

Yehui Wang works at Huawei 2012 Lab - Open Source Management Center and also serves as a board member in the Linux Foundation CHAOSS community. He is mainly responsible for building and engineering the open source community's ecological health evaluation system and services, as a... Read More →

Thursday September 21, 2023 11:00 - 11:40 CEST
Room 3F (3JAUREGIA - Floor 3)

Open Source Leadership Summit

Audience Level Intermediate

11:00 CEST

Behind the Scenes of Open Source Program Offices in the Public Sector: Insights and Guidelines - Johan Linåker, RISE Research Institutes of Sweden & Ciarán O’Riordan, OpenForum Europe

The public sector is embracing Open Source Software to foster innovation, sovereignty, and economic growth. To achieve these goals, public sector organizations are establishing support functions for OSS adoption, development, and collaboration. Although these functions may not always use the Open Source Program Office (OSPO) label, they aim to align OSS operations with organizational objectives as with their industry counterparts. However, little is known about public sector OSPO's organization and structure, and the challenges they face.

Join us for an insightful talk where we bring clarity to these questions through cases of OSPOs across the European public sector, varying in sizes, geographies, and levels of government. The talk will provide practical guidelines and recommendations for public sector organizations looking to establish their own OSPOs, so you can learn from the experiences of others and set your organization up for success in the world of Open Source.

Speakers

Johan Linåker

Senior Researcher, RISE Research Institutes of Sweden

Senior Researcher RISE - Research Institutes of Sweden. Focus & passion for open {source software, data, gov and innovation}.

Ciarán O’Riordan

Senior Policy Advisor, OpenForum Europe

Ciarán is a Senior Policy Advisor at OFE. Ciarán has been working in Brussels since 2004 with a focus on EU policy and open source but he also brings experience from automotive policy, GDPR, and corporate finance. His open source work has included EU policy on copyright and patents... Read More →

Thursday September 21, 2023 11:00 - 11:40 CEST
Room 3H (3JAUREGIA - Floor 3)

OSPOCon

11:00 CEST

Bringing Service Security to a New Level: An Introduction to SaaSBOMs - Ivana Atanasova & Rose Judge, VMware

The industry has been talking for years now about Software Bill of Materials (SBOM) and how they can help resolve security and legal issues in the software supply chain. Yet as the SBOM horizon expands in scope and sophistication, we find ourselves asking: what about SBOMs for services? The truth is that bringing transparency to services via SaaSBOMs is notably more complex. On one side, we have the service itself, depending on one or more other services. Each of them has a different subscription model, transport protocols, geo location and a wide variety of risk factors with no national vulnerability database for services yet created. But that’s not all! We also have the data that flows through a service, which also goes through a variety of known and unknown additional services, regulations, access controls and so on. Can such metadata be known and structured into a cohesive SaaSBOM? How should that information be exchanged in a producer-consumer chain while protecting privacy and intellectual property? Together with the CISA Service Transparency and the SPDX SaaS Profile groups we’ve been working to answer these questions. In this talk we’ll bring visibility into the ongoing efforts around SaaSBOMs, how we approach complexities around generating them, and what’s coming next.

Speakers

Ivana Atanasova

Open Source Software Engineer, VMware

Ivana Atanasova is an Open Source Software Engineer in VMware's Open Source Program Office, where she has contributed to a variety of projects, including Python-TUF, go-tuf, Sigstore, Tern, CHAOSS' Augur, Network Service Mesh, OpenFaaS and others. Previously, Ivana worked at the Bulgarian... Read More →

Rose Judge

Senior Open Source Engineer, VMware

Rose Judge is a Senior Open Source Engineer at VMware where she co-maintains Tern, an open source container inspection tool that generates container SBOMs. Additionally, she is a member of the SPDX Steering Committee and chair of the Linux Foundation’s Automating Compliance Tooling... Read More →

Thursday September 21, 2023 11:00 - 11:40 CEST
Room 0C (Floor 0)

SupplyChainSecurityCon

Audience Level Intermediate

11:00 CEST

Tutorial: Linux Memory Management and Containers - Gerlof Langeveld, AT Computing

When running containerized processes with Docker, Podman or Kubernetes, memory and swap limitations/reservations can be defined. These settings are effectuated through the cgroups (v2) memory controller that influences the memory behavior of such containerized process. In this tutorial, Gerlof covers the main principles of Linux memory management: demand paging, page scanning, swapping, swappiness, OOM killing, NUMA configurations, memory leakage, and memory categories like page cache, shared memory and tmpfs. After that he explains the relation with particular parameters that can be used when starting a container, like --memory, --memory-reservation, --memory-swappiness and --cpuset-mems (with Podman and Docker), as well as the relation with the fields pod.spec.containers.resources.limits.memory and pod.spec.containers.resources.requests.memory for Pods (with Kubernetes). During the presentation the implications of certain choices will be visualized with atop and other tools. Based on memory exercises, attendees can experience and simulate various memory situations on their own Linux systems. Everything needed for this will be in a Github repo that will be shared with the trainees during the tutorial. atop is part of most major Linux distributions or can be easily installed.

Speakers

Gerlof Langeveld

Senior Trainer/Consultant, AT Computing

Gerlof Langeveld is a senior trainer/consultant for AT Computing in The Netherlands. He teaches classes about programming languages, the Linux operating system (like ‘Linux System Programming' and 'Linux Performance Analysis and Tuning’), and courses about Docker and Kubernetes... Read More →

memmgtcontainers pdf

Thursday September 21, 2023 11:00 - 12:35 CEST
Room 0A (Floor 0)

ContainerCon

Audience Level Intermediate
Presentation Slides Attached Yes

11:00 CEST

Tutorial: Developing Portable eBPF Applications Workshop - Lin Sun, solo.io

Everyone wants to get hands on with eBPF. In this workshop, you can explore intermediate topics, like how to develop, debug, and compose modern eBPF programs while focusing only on the kernel-space code, with the help open-source BumbleBee project, and expose them as Prometheus metrics in Kubernetes clusters. By the end of the workshop you will be able to understand the trade-offs of different kernel map structures e.g. HashMap, PerfBuf, and RingBuf, and know how you can migrate from one to another. You will also perform kernel-space debugging to validate the correctness of your code, and take a look at existing eBPF scripts/tools and learn how you can migrate them to BumbleBee to make distribution, packaging, and integration easier. Additionally, you will be also introduced to the latest upstream libbpf helpers, and understand how these will change the way we will develop eBPF code in the future.

Speakers

Lin Sun

Director of Open-Source, Solo.io

Lin is the Director of Open Source at Solo.io and an ex-CNCF ambassador. She has worked on Istio service mesh since 2017 and serves on the Istio Technical Oversight Committee and Steering Committee. Previously, she was a Senior Technical Staff Member and Master Inventor at IBM for... Read More →

Thursday September 21, 2023 11:00 - 12:35 CEST
Room 0B (Floor 0)

LinuxCon

Audience Level Intermediate

11:00 CEST

Workshop: Building and Managing an Open Source Program Office - Ibrahim Haddad, The Linux Foundation

Open source has become critical to modern software development, and enterprises need to have a strategy for managing it effectively. This workshop will focus on building and managing an Open Source Program Office (OSPO) in the enterprise. We will start with an introduction to OSPOs and their importance in today's software landscape. We will then dive into OSS transformation, exploring how open source can transform an organization and the benefits it can provide. Organizational models are an essential component of an effective OSPO, and we will explore different models and their benefits and drawbacks. We will also cover staffing considerations, including roles and responsibilities, and how to build an effective team.Building and managing an OSPO comes with its unique challenges; we will discuss them in detail. We will then share recommended practices and strategies for addressing these challenges, including ways to promote open source adoption and foster a culture of collaboration.

Finally, we will conclude the workshop with a summary of key takeaways and an opportunity for attendees to ask questions and discuss their experiences building and managing OSPOs in their organizations. By the end of this workshop, attendees will have a solid understanding of the criticality of open source, the importance of OSPOs, and the skills and tools needed to build and manage a successful OSPO in the enterprise.

Speakers

Ibrahim Haddad

Executive Director, LF AI & Data Foundation

Thursday September 21, 2023 11:00 - 12:35 CEST
Room 5HTERRAZA (Floor 5)

OSPOCon

11:00 CEST

Speed Mentoring (Pre-registration Required)

Are you looking to grow your technical skills, get more involved in an open source community, or tackle a career-change? Whether you’re new or not so new to open source, we invite you to register to attend our Speed Networking and Mentoring event. You’ll have the chance to meet with several experienced mentors across many communities, from Linux and container technology to cloud and networking, for an inside perspective on advancing your career. Speed networking and mentoring will have career, technical and community tracks.

*You must be registered and attending this event in-person to participate.

Sign up now

Thursday September 21, 2023 11:00 - 12:45 CEST
7th Floor Foyer (Floor 7)

Special Events / Exhibits / Breaks

11:55 CEST

Minimalist Best Practices in Kubernetes Operators - Jonathan Berkhahn, IBM

Building a Kubernetes operator can be a daunting task, especially for application developers new to Kubernetes. Even for those with experience, the intricacies of writing and managing a controller are complicated and subject to change for different operator architectures. Come learn tips, guidelines, and other best practices for paring down your operator to the least possible requirements to improve performance and security.

Speakers

Jonathan Berkhahn

Senior Software ENgineer, IBM

Jonathan is a member of the steering committee of Operator Framework, and a maintainer of Operator SDK. He's worked in the past on various open technologies in the cloud platform space, including Kubernetes and Cloud Foundry. His passions in open source include behavior driven development... Read More →

OSS EU 2023 presentation pdf

Thursday September 21, 2023 11:55 - 12:35 CEST
Room 0E-1 (Floor 0)

CloudOpen

Presentation Slides Attached Yes

11:55 CEST

Servo Web Rendering Engine Reboot - Manuel Rego, Igalia

Created by Mozilla Research in 2012, the Servo project is a Research & Development effort meant to create an independent, modular, embeddable web engine that allows developers to deliver content and applications using web standards. Servo is an experimental browser engine written in Rust, taking advantage of the memory safety properties and concurrency features of the language. Stewardship of Servo moved from Mozilla Research to the Linux Foundation in 2020, where its mission remains unchanged. After some slow years, there's now renewed activity on the project, with a roadmap focused on improving the engine’s CSS 2 conformance, exploring Android support, and making Servo a practical embeddable rendering engine. In this presentation we'll review the status of the project, the recent developments during 2023 and the plans for the future to become Servo an alternative web rendering engine for the embedded devices industry.

Speakers

Manuel Rego

Software Engineer, Igalia

Manuel Rego is a free software developer working on the Web Platform at Igalia. Over the past few years, he has been working on the implementation of different web platform features in Chromium/Blink and WebKit for which he is an owner and reviewer, respectively. Manuel is also a... Read More →

2023 09 21 open source summit europe servo pdf

Thursday September 21, 2023 11:55 - 12:35 CEST
Room 3H (3JAUREGIA - Floor 3)

Emerging OS Forum

Audience Level Intermediate
Presentation Slides Attached Yes

11:55 CEST

The Compiler Plugin Framework to Facilitate Customized Compilation and Development - Yongnian Le & Mingchuan Wu, Huawei Technologies

The compiler plug-in can provide customized compilation and tool capabilities. However, common capabilities such as plug-in maintenance, compatibility, and debugging require repeated investment by developers. Currently, two mainstream compilers, GCC and LLVM, both support plug-ins. However, they are incompatible with each other. As a result, developers need to develop plug-ins repeatedly, which further increases the cost of plug-in development. Therefore, to meet various computing hardware customization and tool development requirements, developers urgently need a convenient and universal plug-in development framework. This session introduces a compiler plug-in framework, which is the first in industry to support compiler plug-in development across multiple compilers, in order to avoid repeated development. The framework also provides some common services, such as compatibility and integrity verification, to help developers improve development efficiency. Plug-ins are decoupled from compilers and can be independently developed and deployed. Hardware vendors can quickly enable chips and shorten the time to market (TTM) of chip products. From this session, compiler-based tool developers and chip enablers can quickly know the status quo and gain a convenient development approach.

Speakers

Yongnian Le

GCC for openEuler Architect, openEuler Community

15+ years of experience in open source development and management, contributed to projects like XML libraries, Android , Chromium, etc. At the same time, 10+ years of expereince in compiler related projects like Intel runtimes & compilers, etc. Started to work on openEuler since 2020... Read More →

Mingchuan Wu

Senior Software Engineer, openEuler Community

3 years of experience in open source development and management. Started to work on openEuler since 2020, currently work as project committer for GCC for openEuler compiler.

OSSEU23 The Compiler Plugin Framework to Facilitate CustomizedCompilation and Development pptx

Thursday September 21, 2023 11:55 - 12:35 CEST
Room 3G (3JAUREGIA - Floor 3)

Emerging OS Forum

Audience Level Intermediate
Presentation Slides Attached Yes

11:55 CEST

Strace - Swiss Army Knife to Trace, Analyze, RT Debug - Harald König, Bosch Sensortec GmbH

strace is still one of my most often used tools, every day! In the talk I will give live demos of very different use cases, to give you ideas how strace might help you in your daily tasks, too, without any need to instrument or modify your program(s) to be analyzed: - collect & analyze all file accesses: find paths of (missing?) config files and shared libraries - get full list of all executed processes with command line, environment etc., e.g. to analyze complex shell scripts or make/build environments - collect RT timing information, about process execution, file accesses or network traffic -- using this timing info you can reply load/access patterns you captured from real world testings/measurements.

Speakers

Harald König

sw developer, Bosch Sensortec GmbH

I studied physics and started with Linux (kernel 0.98.4) in 1992 (UNIX since 1987), XFree86 (S3 cards) since 1993, using and working on (La)TeX since 1987 and co-founded the german TeX users group DANTE e.V. I've given talks on several german FOSS/Linux conferences, and some project... Read More →

oss 2023 strace slides pdf

lce 2014 strace linux en pdf

lce 2015 strace bash en pdf

Thursday September 21, 2023 11:55 - 12:35 CEST
Room 0E-2 (Floor 0)

LinuxCon

Presentation Slides Attached Yes

11:55 CEST

Expanding the Capabilities of LLMs Through Community Collaboration - Antonio Velasco Fernández & Jose Pablo Cabeza García, Elastacloud

In this talk, we will explore how community projects are being used to enhance large language models (LLMs), such as the LLama Index, to overcome token limitations. We will discuss the development of LangChain, a community-driven ecosystem aimed at expanding LLM capabilities by providing tools like AutoGPT. By leveraging the power of community collaboration, we can overcome some of the challenges of working with LLMs, and unlock new possibilities for natural language processing. Attendees will gain a deeper understanding of the role that open source projects can play in expanding the capabilities of LLMs, and how they can contribute to these efforts.

Speakers

Antonio Velasco Fernández

Data Scientist, Elastacloud

Antonio Velasco Fernández is a Data Scientist at Elastacloud who specializes in NLP and has created and deployed innovative solutions for various industry challenges. He has over 4 years of experience in the field and is always eager to learn and share his insights. If this bio sounds... Read More →

Jose Pablo Cabeza García

Lead Data Engineer, Elastacloud

Pablo Cabeza is a Data Engineer at Elastacloud, experienced in Azure data platforms and building data-driven solutions. He advocates for pushing boundaries and has delivered successful data platforms for various sectors over the last 5 years. Recently, with the advances in Large Language... Read More →

llms community talk pdf

Thursday September 21, 2023 11:55 - 12:35 CEST
Room 0D-2-0D-3 (Floor 0)

Open AI & Data Forum

Presentation Slides Attached Yes

11:55 CEST

Building On-Ramps for Non-Code Contributors in Open Source - Natali Vlatko, Independent & Celeste Horgan, Aiven

“Contributions welcome!” We’ve seen this standard disclosure across open source projects, whether they’re actively looking for contributors or not. We build working groups, backlogs, and enhancement proposal processes designed to bring in developers to help us work on our project, and with any luck it succeeds. But supporting open source means supporting the entire project: documentation, community meetings, events, and infrastructure. One of the most common questions smaller projects have is how to attract these non-code contributors, but there aren’t any easy answers out there. In this talk, experienced non-technical contributors in the Kubernetes/cloud native ecosystems go through some of the ways Kubernetes has built contributor on-ramps for non-code contributions, and how you can adapt them to your projects. The talk features practical examples of what to do to support the non-code aspects of your open source project and how to attract – and retain – contributors. Open source software is so much more than code – documentation, community, and infrastructure need maintaining. How do you attract and keep non-code contributors? Let two experienced practitioners show you the way!

Speakers

Natali Vlatko

Open Source Technical Leader, Cisco

Natali Vlatko (she/her) is an Open Source Technical Leader at Cisco, specializing in open software, policy, compliance, and governance, and is a SIG Docs Co-Chair for Kubernetes. She plays on the fun computer in her spare time. Her academic background is in Egyptology and Archaeology... Read More →

Celeste Horgan

Developer Educator, Aiven

Celeste Horgan (she/her) is a writer, speaker and leader. She solves documentation problems at scale, and advocates for inclusivity across the industry. She co-founded the Inclusive Naming Initiative and currently works as a Developer Educator for Aiven, producing high quality technical... Read More →

Thursday September 21, 2023 11:55 - 12:35 CEST
Room 3F (3JAUREGIA - Floor 3)

Open Source Leadership Summit

Audience Level Any

11:55 CEST

Panel Discussion: The Impact of the CRA on the Open Source Ecosystem - Cheukting Ho, Python Software Foundation; Mirko Boehm & Greg Kroah Hartman, The Linux Foundation; Laura Seay, Red Hat; Justin Colannino; GitHub; Philip Robb, Ericsson

Speakers

Philip Robb

President, Ericsson Software Technology

Greg Kroah Hartman

Fellow, Linux Foundation

Greg Kroah-Hartman is among a distinguished group of software developers who maintain Linux at the kernel level. In his role as a Linux Foundation Fellow, he continues his work as the maintainer for the Linux stable kernel branch and a variety of subsystems while working in a fully... Read More →

Laura Seay

Manager, Product Security Supply Chain Operations, Red Hat

Laura is a Cybersecurity professional at Red Hat focused on software supply chain security. With over 15 years of experience in intelligence-driven cybersecurity operations and threat analysis, she brings a unique perspective to solving complex problems by strategically mitigating... Read More →

Mirko Boehm

Senior Director, Community Development, Linux Foundation Europe

Cheuk Ting Ho

Director, Python Software Foundation

Before working in Developer Relations, Cheuk has been a Data Scientist in various companies which demands high numerical and programmatical skills, especially in Python. To follow her passion for the tech community, Cheuk has been a Developer Advocate for 3 years. Cheuk also contributes... Read More →

Justin Colannino

GitHub

Thursday September 21, 2023 11:55 - 12:35 CEST
Room 3A (Floor 3)

Open Source Leadership Summit

11:55 CEST

Insights from the Cloud Native Security Slam - Eddie Knight, Sonatype

In 2022, the Cloud Native Computing Foundation (CNCF) hosted the Security Slam, a collaborative event in which 13 CNCF projects worked to improve their security posture. Using the CLOMonitor, participating projects streamlined their visibility into key security metrics, including measurements by the OpenSSF Scorecard. In this session, we will share the lessons learned from the Security Slam, explore best practices for securing the software supply chain at the source, and hear about what gaps still remain to be addressed in the 2023 Security Slam!

Speakers

Eddie Knight

OSPO Technical Program Manager, Sonatype

Eddie Knight has been a technical leader in organizations ranging from financial services to software security, enabling him to gain the wealth of experience and insight that he brings as a speaker, author, and strategist. In addition to his role leading the Open Source Program Office... Read More →

Thursday September 21, 2023 11:55 - 12:35 CEST
Room 0C (Floor 0)

SupplyChainSecurityCon

12:50 CEST

Creating Dynamic Kubernetes Resources with Crossplane Functions - Steven Borrelli, Upbound, Inc.

Crossplane is a popular CNCF project that uses Kubernetes Custom Resource Definitions and Controllers to manage any resource that has a management API. While Kubernetes' declarative model is extremely powerful it can be limited in modeling more complex logic patterns such as loops and conditionals. In January 2023, the 1.11 release of Crossplane included a new v1alpha1 feature: Composition Functions. This talk will cover using Composition functions to perform tasks such as mutating Kubernetes objects and creating new resources dynamically in a cluster based on a declarative input. This allows Platform Teams to manage complex cloud infrastructure in a Kubernetes-native manner. This talk will cover: - The Crossplane Model - The motivation for developing functions - The execution context of a Function - How Crossplane Models resources - The FunctionIO Custom Resource Definition - Common programming patterns - Code examples in Go and Python - Packaging functions

Speakers

Steven Borrelli

Principal Solutions Architect, Upbound, Inc.

Steven Borrelli is a Principal Solutions Architect for Upbound. His focus is writing cloud infrastructure automation software. He is a contributor to the CNCF Crossplane project.

OS Summit Crossplane Functions pdf

Thursday September 21, 2023 12:50 - 13:30 CEST
Room 0E-1 (Floor 0)

CloudOpen

Presentation Slides Attached Yes

12:50 CEST

Puzzlefs - the Next-Generation Container Filesystem - Armand-Ariel Miculas, Cisco Systems

Puzzlefs[1] is a container filesystem designed to address the limitations of the existing OCI format. The main goals of the project are reduced duplication, reproducible image builds, direct mounting support and memory safety guarantees, some inspired by the OCIv2 design document. Reduced duplication is achieved using the content defined chunking algorithm FastCDC. This implementation allows chunks to be shared among layers. Building a new layer starting from an existing one allows reusing most of the chunks. The author will compare space usage of puzzlefs images to traditional OCI layouts in a real-world use case, showcasing the storage savings. Another goal of the project is reproducible image builds, which is achieved by defining a canonical representation of the image format. Direct mounting support is a key feature of puzzlefs and, together with fs-verity, it provides data integrity. Currently, puzzlefs is implemented as a userspace filesystem (FUSE). A read-only kernel filesystem driver is underway. Lastly, memory safety is critical to puzzlefs, leading to the decision to implement it in Rust. Another goal is to share the same code between user space and kernel space in order to provide one secure implementation. https://github.com/anuvu/puzzlefs [1]

Speakers

Armand-Ariel Miculas

Software Engineer, Cisco Systems

Ariel Miculas is a software engineer passionate about low-level programming, Linux technologies and security. He has a Master's degree in Cybersecurity from the Technical University of Cluj-Napoca, where he's also a teaching assistant for the assembly language programming laboratory... Read More →

puzzlefs open source summit 2023 pdf

Thursday September 21, 2023 12:50 - 13:30 CEST
Room 0A (Floor 0)

ContainerCon

Presentation Slides Attached Yes

12:50 CEST

Establishing Trusted and Secure Foundation for Device Management Using Open Source Software - Tushar Khandelwal, Arm

In today's world IoT devices, large and small, are managed remotely by device management servers. There are standardized as well as proprietary device management protocols in use, which are comparable in terms of security and functionality. Recently industry has started focusing on improving security of the communication channel including endpoints itself. In addition to the use of various software isolation techniques( for e.g. TrustZone ), attempts have been made to verify the security posture of the device using attestation. Attestation allows a remote party to verify the operating characteristics of a device, including measurements of code running on the device, or the presence of authentic hardware IP itself. Evidence produced by an "attester" is typically used by a relying party to ascertain its security posture, and therefore acts as a building block to establish trust between the parties involved in distributed computations. We want to share the work we have done, showcasing an end-to-end scenario using a high-end IoT device. We have used some of the "off-the-shelf" open source components having attestation capabilities (including attestation verification ) to enhance the security of the whole device management.

Speakers

Tushar Khandelwal

Principal software engineer, Arm Ltd.

Tushar Khandelwal : Tushar works in Architecture and Technology Group in Arm as Principal Software Engineer . He has several years of experience in developing and designing software for low end IoT devices and Mobiles devices. He is working on various topics related to System ans... Read More →

Thursday September 21, 2023 12:50 - 13:30 CEST
Room 3G (3JAUREGIA - Floor 3)

Emerging OS Forum

12:50 CEST

Early Splash Screen Using U-Boot - Devarsh Thakkar & Nikhil M Jain, Texas Instruments

Increasing number of Auto and robotic use case require enabling display as early as possible. U-boot is a widely used bootloader which supports large number of SoC's and provides a framework for writing video drivers and displaying images while device boots up. This talk will cover how one can add support for a new video driver in u-boot and enable display during bootup. Display controller basics and u-boot boot flow will be covered briefly, before moving into details on how to write a new video class driver using U-boot's Video Class framework and how to display images from different boot media at U-boot prompt or during bootup. It will then cover details regarding enabling early splash screen for displaying image at U-boot's SPL binary and ensuring flicker free experience during hand-off to further bootloader binaries and Linux kernel. Different design considerations related to storage media, memory addressing, and hand-off will be covered to give an idea to user on platform specific changes that need to be done to support early display using U-boot.

Speakers

Devarsh Thakkar

Software Engineer, Devarsh Thakkar

Devarsh Thakkar works as an Embedded Linux developer at Texas Instruments. He has worked on linux bootloaders, device drivers and multimedia frameworks such as Gstreamer since 2014. He has open source contributions in Linux kernel, Gstreamer and Yocto projects.

Nikhil M Jain

Software Intern, Texas Instruments

Nikhil M Jain works as an embedded software intern at Texas Instruments. He has been working enabling early display for TI SoC's and has also made contributions to U-boot open source project.

Early Splash Screen using Uboot OSS2023 21sept pdf

Thursday September 21, 2023 12:50 - 13:30 CEST
Room 0B (Floor 0)

LinuxCon

Presentation Slides Attached Yes

12:50 CEST

Emulating Devices in Linux Using Greybus Subsystem - Vaishnav Mohandas Achath, Texas Instruments

Greybus is an application layer protocol in the Linux kernel developed as part of Google's Project Ara modular smartphone. Greybus has strong roots within Linux kernel subsystems and supports interacting with devices on buses like USB, I2C, and SPI. Greybus protocol exposes these bus transactions as a set of greybus requests and responses that are transport agnostic. This session discusses making use of the greybus framework to emulate devices on a Linux host and using the greybus device discovery mechanism to hot-plug/unplug these virtual devices thus helping in rapid prototyping, development, and testing. The session will include a live demo of emulating an I2C sensor device and a USB HID device on the Linux host using the greybus subsystem, interacting with corresponding device drivers, and subsystems, and familiarizing with necessary userspace tools. Linux kernel has 1000s of device drivers but automated testing for these device drivers is limited, the method discussed in this session makes it easy to perform automated testing and Continuous Integration (CI) for 1000s of device drivers in Linux kernel, this method also is helpful in prototyping and developing device drivers or userspace tools/frameworks when actual hardware is not yet available thus accelerating development.

Speakers

Vaishnav Achath

Software Engineer, Texas Instruments (India) Pvt. Ltd.

Vaishnav Achath is a Senior Software Engineer with Texas Instruments Inc. working with the Linux Core Product Development team for Jacinto Processors, as part of this role Vaishnav primarily works on upstream Linux kernel and U-Boot development and also on customer requirements, Vaishnav... Read More →

Emulating Devices Linux Greybus pdf

Thursday September 21, 2023 12:50 - 13:30 CEST
Room 0E-2 (Floor 0)

LinuxCon

Presentation Slides Attached Yes

12:50 CEST

Building Knowledge Graphs - Sumit Pal, Ontotext

Knowledge graphs are all around us and we are using them everyday. Lot of the emerging Data management products like Data Catalogs/Fabric, MDM products are leveraging Knowledge Graphs as their engines. A knowledge graph is not a one-off engineering project. Building a KG requires collaboration between functional domain experts, data engineers, data modelers and key sponsors. It also combines technology, strategy and organizational aspects; focusing only on technology leads to a high risk of a KG’s failure. KGs are effective tools for capturing and structuring a large amount of structured, unstructured and semistructured data. As such, KGs are becoming the backbone of different systems, including semantic search engines, recommendation systems, and conversational bots and data fabric. This session guides data and analytics professionals to show the value of Knowledge Graphs and how to build semantic applications.

Speakers

Sumit Pal

Director Strategic Solutions Architecture, Ontotext

Sumit is an Ex Gartner VP Analyst in Data Management & Analytics space. At Gartner I used to advice CTOs, CDOs, CDAOs, Enterprise Architects and Data Architects on Data Strategy, Data Architectures, implementation and choosing tools, frameworks and vendors for building data platforms... Read More →

BuildingKnowledgeGraphs V0 pptx

BuildingKnowledgeGraphs V1 pptx

Thursday September 21, 2023 12:50 - 13:30 CEST
Room 0D-2-0D-3 (Floor 0)

Open AI & Data Forum

Presentation Slides Attached Yes

12:50 CEST

BoF: How to Build a Tech Community: The Fine Art of Organizing Meetups - Juan Manuel Perafan, Xebia

Building a tech community is a rewarding way to connect with like-minded individuals, share knowledge, and foster innovation. But starting from scratch can be daunting. Meetups are a popular way to bring together people with a shared interest, but organizing a successful event takes careful planning and execution. In this birds of a feather session, we'll explore the fine art of organizing meetups and building a thriving tech community. We'll discuss how to choose the right format, location, and topics for your meetups, as well as how to attract attendees and build momentum. We'll also explore strategies for engaging with sponsors and partners, and how to create a sustainable model for your meetup group. Whether you're a seasoned organizer or just starting out, this session will provide valuable insights and best practices for building a strong and vibrant tech community through meetups. Join us to learn from experienced organizers, share your own tips and tricks, and connect with other tech enthusiasts who are passionate about building community.

Speakers

Juan Manuel Perafan

Analytics Engineer, Xebia

Born and raised in Colombia. I help companies with human and technological challenges of being a data-driven organization. My ideal working week involves learning new technologies, debugging code, writing difficult calculations, teaching organizations about data visualization, and... Read More →

How to Build a Tech Community The Fine Art of Organizing Meetups pdf

Thursday September 21, 2023 12:50 - 13:30 CEST
Room 3A (Floor 3)

Open Source Leadership Summit

Presentation Slides Attached Yes

12:50 CEST

Contributor Growth Strategies for OSS Projects - Dawn Foster, CHAOSS

Maintaining an open source project is hard work that often extends out over several years, and maintainer burnout is common within open source projects. It can be hard for already overworked maintainers to balance the day to day work required to keep the project running while investing in activities to increase future sustainability. The good news is that we have best practices, resources, and templates available to make it easier for maintainers and projects to build a contributor strategy that leads to a strong and growing community for an open source project over the long term. This talk will help you apply those resources in your project. This talk will have several major sections. 1) Discussion about the major factors that impact contributor growth. 2) Developing and executing on a long-term contributor growth strategy, including governance, new contributor onboarding, and mentoring. 3) Using contributor ladders to promote contributors into leadership positions as more maintainers to share the workload can reduce maintainer burnout over time. 4) Metrics for measuring project sustainability. The audience will walk away with a better understanding of how to grow their contributor base and build a community around their open source project.

Speakers

Dawn Foster

Director of Data Science, CHAOSS

Dr. Dawn Foster works as the Director of Data Science for CHAOSS where she is also a board member / maintainer. She is co-chair of CNCF TAG Contributor Strategy and an OpenUK board member. She has 20+ years of experience at companies like VMware and Intel with expertise in community... Read More →

Contrib Growth Strategies OSSEU2023 pdf

Thursday September 21, 2023 12:50 - 13:30 CEST
Room 3F (3JAUREGIA - Floor 3)

Open Source Leadership Summit

Presentation Slides Attached Yes

12:50 CEST

Dependency Management: The Cause of—and Solution to—All Supply Chain Problems - Eve Martin-Jones & Josie Anugerah, Google

How many dependencies does your software project have? How much confidence do you have in them? We say in open source there is safety in ‘eyes on the code’, but with supply chain attacks on the rise - who is really watching? Most software is built with hundreds if not thousands of direct and transitive dependencies, and those dependencies change every day. Our analysis shows that up to 20% of PyPI packages change their dependency graphs multiple times per week. Ensuring that each one of these dependencies is trustworthy is a daunting task. In this talk, Eve and Josie will share some stats and stories from their experiences building deps.dev. They'll look at what it means for a project to be healthy, dig into the complexities of dependency resolution algorithms, and recommend tools that can make practical dependency management possible if not easy.

Speakers

Eve Martin-Jones

Software Engineer, Google

Eve is an engineer working on open source software security at Google. She lives in Australia, with her cat Mochi, who is surprisingly proficient at JavaScript. Between D&D campaigns, she can be found deciphering the Cargo dependency-resolution algorithm bug-for-bug, advocating for... Read More →

Josie Anugerah

Software Engineer, Google

Josie is an engineer at Google, working on Open Source Supply Chain Security. She lives in Sydney, Australia, with her cat Polly, who remains sadly ambivalent about software security. Between badminton games, she can be found wrangling advisory data for vulnerability databases, finding... Read More →

Dependency management the cause of and solution to all supply chain problems pdf

Thursday September 21, 2023 12:50 - 13:30 CEST
Room 0C (Floor 0)

SupplyChainSecurityCon

Presentation Slides Attached Yes

12:50 CEST

Will Large-Scale Automated Scanning Stop Malware on OSS Repositories? - Zachary Newman, Chainguard, Inc.

Both academic research and products in industry will scan software for malware. Occasionally, someone suggests that OSS package repositories run one of these tools every time a package gets published to stop malware before it starts. However, a look at the Python’s PyPI, which rolled out such a system in 2020, shows why this doesn’t work, and likely can’t given current approaches to malware detection. This talk is a case study of PyPI to identify requirements for automated malware scanning. Critically, the huge number of packages uploaded to PyPI each week (and the small, all-volunteer team that responds to malware reports) mean that even tiny false-positive rates that would awe malware researchers would create endless work for the PyPI team. There’s good news, however: an equilibrium has emerged, with third-party (human) researchers running their own scanners, then reporting true positives. And surprisingly, malware on these repositories doesn’t alarm the administrators compared with other supply chain threats. The moral: you can’t design solutions without listening to the needs of the open source maintainers who would use it. Anybody who works on package repositories or worries about downloading malware packages from these repositories will learn something from this talk.

Speakers

Zachary Newman

Research Scientist, Chainguard, Inc.

Zack is passionate about developer tooling, supply chain security, and applied cryptography. After 4 years as a software engineer and tech lead on Google Cloud SDK, he moved to MIT CSAIL to research authenticated data structures and Tor network performance. Now, as a research scientist... Read More →

Thursday September 21, 2023 12:50 - 13:30 CEST
Room 3H (3JAUREGIA - Floor 3)

SupplyChainSecurityCon

Audience Level Intermediate

12:50 CEST

Greening the AI Cloud: Validating Power Models for Kubernetes Containers - Marcelo Amaral, IBM Research Tokyo

Were you aware that Machine Learning (ML) is responsible for up to 40% of data center energy consumption? ML model training and inference are computationally intensive, with the potential for exponential growth in the coming years. As a result, understanding ML power consumption is critical, especially given the increasing demand for government and industry efforts to reduce greenhouse gas emissions and increasing popularity of Foundation Model systems. The observability of ML power consumption is a crucial area for optimizing power provisioning, capping, and tuning in data centers. In this presentation, we will introduce the Kepler framework, which offers a way to estimate power consumption at the process, container, Kubernetes pod, and job levels. The Kepler framework can be composed of a set of power models that can be utilized in various scenarios, such as different architectures and available metrics. We will provide and demo a focused view on creating a power model for your environment, and we will detail how to validate the accuracy of the power model.

Speakers

Marcelo Amaral

Doctor, IBM

Marcelo, specialized in cloud, systems, and infrastructure optimization, is currently working at IBM's Tokyo research lab. He has a strong background in leveraging Kubernetes for various purposes. Currently, Marcelo is collaborating with Red Hat to enhance the Kepler power model and... Read More →

OSS EU23 v1 1 pdf

Thursday September 21, 2023 12:50 - 13:30 CEST
Room 5HTERRAZA (Floor 5)

SustainabilityCon

Presentation Slides Attached Yes

13:30 CEST

In Person Networking Meetings

Thursday September 21, 2023 13:30 - 15:00 CEST
Sponsor Showcase (Floor 0)

Special Events / Exhibits / Breaks

13:30 CEST

Lunch (Attendees On Own)

Lunch concessions available on 1st floor & click here for lunch recommendations in the area.

FINAL OSS EU 2023 LunchMap pdf

Thursday September 21, 2023 13:30 - 15:00 CEST
Lunch Map Attached

Special Events / Exhibits / Breaks

15:00 CEST

For Want of a Nail: Industry Analyst Lessons Learned on the State of Software Development - Jon Collins, GigaOm

How far have we come in software development and delivery? We're told that the latest thing will be the next big thing, be it cloud-native containers, Kubernetes and GitOps, or Copilot, ChatGPT and AI-driven development, or DORA metrics, software development analytics and value stream management. But, nearly 15 years since the term DevOps was first coined, just how far have we come, what is the net-net for software development today? In this session we look at the latest trends impacting software development and position them against the challenges faced by organisations large and small, new and old. Taking these challenges into account, we define a path for development, and for developers, engineering managers and strategists, who can expect to take away an understanding of: - How to navigate the ever-expanding buzzwords, languages, tools and techniques - What a software career looks like in this age of continuous change - Where does value ultimately come from, and how to develop the associated soft skills Jon will bring together latest research with timeless principles, to make this a session of learning for the next generation of innovators, managers and leaders. Come along, and bring your questions!

Speakers

Jon Collins

VP of Research, GigaOm

Jon Collins has nearly 35 years of experience in IT. Starting as a Pascal/C programmer, he went on to manage UNIX systems and software development environments, gaining a tiny footnote in the French Linux handbook along the way. Jon has worked as an industry analyst for the past two... Read More →

Thursday September 21, 2023 15:00 - 15:40 CEST
Room 0E-1 (Floor 0)

CloudOpen

15:00 CEST

DIY Private Container Registry - Márk Sági-Kazár, Cisco

The growing adoption of containerization and container orchestration has amplified the need for secure and controlled distribution of container images. This talk delves into the process of distributing private container images and OCI artifacts, examining the strengths and weaknesses of various solutions in relation to specific use cases, such as software sales and customized builds for clients.

We compare different approaches, beginning with hosted registries that provide cost-effectiveness, streamlined implementation, and minimal maintenance, although they possess inherent limitations. Subsequently, we investigate a range of open-source solutions, from turnkey options that are user-friendly and low-maintenance but may offer limited integration capabilities, to constructing fully bespoke solutions using low-level building blocks, which grant extensive customization possibilities.

Join us as we navigate the ever-evolving world of constructing private container distribution using open-source software and assist you in determining the most appropriate approach tailored to your unique needs and requirements.

Speakers

Márk Sági-Kazár

Open Source Tech Lead, Cisco

Mark is a dedicated technical leader and software engineer who specializes in building Cloud Native and Open Source software. His passion for Open Source has led him to make substantial contributions to a various projects.A key focus for Mark is to streamline the contribution process... Read More →

Thursday September 21, 2023 15:00 - 15:40 CEST
Room 0A (Floor 0)

ContainerCon

15:00 CEST

OpenTofu Project Overview - Kuba Martin & Roni Frantchi

In this session, you learn all about OpenTofu, the vision for it, project governance, and be able to ask two core OpenTofu developers any questions you have about the project!

Speakers

Kuba Martin

Roni Frantchi

Thursday September 21, 2023 15:00 - 15:40 CEST
Room 5HTERRAZA (Floor 5)

Emerging OS Forum

15:00 CEST

How SteamOS is Contributing to the Linux Ecosystem - Alberto Garcia, Igalia

SteamOS is the Linux-based operating system that runs on Valve's Steam Deck. SteamOS is based on existing open source components, and follows an approach of contributing as much as possible to the upstream projects that it uses. This presentation will cover some of the improvements that the development of SteamOS has contributed to the Linux ecosystem in areas such as graphics, the kernel or the desktop.

Speakers

Alberto Garcia

Software Engineer, Igalia

Alberto Garcia is a software engineer working at Igalia. He has more than two decades of professional experience working with open source projects and Linux-based devices and operating systems. He is an active Debian developer and has years of contributions to projects like QEMU and... Read More →

steamos and linux oss eu 2023 pdf

Thursday September 21, 2023 15:00 - 15:40 CEST
Room 0B (Floor 0)

LinuxCon

Presentation Slides Attached Yes

15:00 CEST

WireGuard and the Future of Cloud Networking - Alex Feiszli, Netmaker

Networking needs have evolved with the cloud, and WireGuard, a new VPN protocol, is at the forefront of a new era in cloud networking. Hybrid cloud, multi cloud, and edge computing all require new patterns of networking. This talk will introduce attendees to the basics of WireGuard, its history, and how it is changing the cloud networking landscape.

We will begin by providing some background on VPN's and the traditional role they have played within organizations. Then, we will discuss the gradual decline in VPN's, in favor of new networking patterns like SD-WAN, SASE, and Zero Trust.

Finally, we will discuss the introduction of WireGuard, its integration into the Linux kernel, and the new networking patterns it enables that defy the traditional VPN pattern.

We will end by demonstrating some real-world use cases for WireGuard in the cloud, and by providing a closer look at how to introduce WireGuard into your organization.

Attendees will leave this talk with a solid understanding of WireGuard's capabilities, its pros and cons versus other patterns, and where WireGuard might fit into their own organizations' cloud environments.

Speakers

Alex Feiszli

Founder & CEO, Netmaker

Alex Feiszli is a WireGuard enthusiast and constant tinkerer. Alex has worked in DevOps, Kubernetes Infrastructure, and backend development at Deloitte, Crossvale (a Red Hat partner), and IBM. Alex brought these skills to his startup Netmaker, where they're making it easy to build... Read More →

WireGuard and the Future of Cloud Networking (1) pdf

Thursday September 21, 2023 15:00 - 15:40 CEST
Room 0E-2 (Floor 0)

LinuxCon

Presentation Slides Attached Yes

15:00 CEST

Map of Science: A UI for Open-Source Science - Alexy Khrabrov & Tim Bonnemann, IBM Research

Open-Source Science (OSSci) is an initiative at NumFOCUS cofounded by IBM to bring together OSS developers and scientists in order to accelerate scientific discovery and solve the hardest issues facing humanity. OSSci was launched at SciPy 2022 and elaborated at OSPOCon North America in May 2023.

The Map of Open-Source Science (MOSS) – or Map of Science for short – is a researcher’s entry point in the world of OSS for science. The key nodes in that landscape are people, organizations and groups, areas of science, OSS used by each area of science, papers written with the help of the OSS, data run through the OSS, and AI models derived from the data by the OSS.

The map is interactive, and the underlying dataset is rich and queryable. What OSS tools does my group use that a partner university also uses? How do we differ? What data pipelines are we a part of? What national infrastructure initiatives are we taking advantage of? Who can we hire to speed things up and use image analysis to advance our research?

MOSS is an effort of its namesake Interest Group under OSSci at NumFOCUS. We work with partners such as IBM, Chan Zuckerberg Initiative, Sloan Foundation, UC Santa Cruz, and others to create a UX for OSS in Science. Come to this session to learn more and join the effort!

Speakers

Alexy Khrabrov

Open Source Science Community Director, IBM Research

Alexy Khrabrov is the Open-Source Science Community Director at IBM Research. He previously was a Technical Ecosystem Development Lead at IBM Quantum, Chief Scientist at Nitro, an Australian public company, a software engineer at Amazon, and a co-founder and engineer at several Bay... Read More →

Tim Bonnemann

Community Lead, Open-Source Science (OSSci), IBM Research

Tim Bonnemann is the Community Lead for Open-Source Science (OSSci), a global initiative by NumFOCUS that aims to accelerate scientific research through improved open source. He is a longtime community architect, builder, and manager with over 15 years of experience in the public... Read More →

Thursday September 21, 2023 15:00 - 15:40 CEST
Room 0D-2-0D-3 (Floor 0)

Open AI & Data Forum

Audience Level Any

15:00 CEST

Asymmetries in Open Source: What Can Research Tell Us about Closing the Consumption-contribution Gap to Improve the Sustainability of OSS? - Adrienn Lawson, LF Research

In the ever-evolving landscape of open source technology, a data-driven analysis of global and regional trends is essential for informed decision-making. Join us for a presentation rooted in survey-based research as we explore open source dynamics, drawing comparisons between Europe and the worldwide landscape.

The talk will focus on open source sustainability and provide quantitative insights into the challenges faced by the open source community and potential strategies for addressing them.

Presented by Adrienn Lawson (Data Analyst at LF Research), this talk is based on the comprehensive 2023 World of Open Source: Global Spotlight Survey conducted by the Linux Foundation Research Team.

Speakers

Adrienn Lawson

Data Analyst, LF Research

Asymmetries in Open Source OSSummit Europe pdf

Thursday September 21, 2023 15:00 - 15:40 CEST
Room 3F (3JAUREGIA - Floor 3)

Open Source Leadership Summit

Presentation Slides Attached Yes

15:00 CEST

FORK IT ALL if You Fork It - Daniel Doubrovkine, AWS

In April 2021 Amazon announced OpenSearch, a community-driven, open-source fork of Elasticsearch and Kibana. Decidedly, doing open-source at Amazon has had its unique challenges! In this talk we will take you through the journey of doing open-source from the inside of a large company, like we mean it. You will learn what motivated us, what it took to do a fork with 75+ GitHub repositories, hear about the heavy lifting required to produce a new distribution, the logistics involved in organizing a sharp turn for dozens of developers in the ways they worked, how we raised the security bar, onboarded many external maintainers, and fended some disruptors. We'll ask hard questions, be self critical, celebrate our successes, and talk about the future of cloud-native open-source search.

Speakers

Daniel Doubrovkine

Principal Engineer, AWS

Daniel Doubrovkine (aka dB.) is a Principal Engineer at AWS in New York, working on OpenSearch. He is a seasoned entrepreneur, technologist and former CTO at Artsy.net. Daniel graduated from University of Geneva in late 90s with a degree in Computer Science. Daniel is the creator... Read More →

2023 09 21 Fork it All if You Fork It pptx

Thursday September 21, 2023 15:00 - 15:40 CEST
Room 3A (Floor 3)

Open Source Leadership Summit

Presentation Slides Attached Yes

15:00 CEST

The SBOM Way! The Art of Consuming, Enriching, and Managing Inbound Software Bill of Materials for Automated Continuous Compliance - Anupam Ghosh & Arun Azhakesan, Siemens

How challenging is the software compositional analysis process (SCA) for you? If the answer is ‘very challenging’, then you must be breaking your head on how to manage your identified dependencies in your software. The answer is enabling continuous automation using open source license scanner and catalog applications to consume, enrich and manage SBOM. This is key to ensure accuracy and consistency in dependency management. In this presentation, we talk about how organizations can manage dependencies at all levels in their software during various stages of the release cycle. From dependency analysis and license scanning to systematically enriching the SBOM to further provide insights to your software composition is discussed in detail. The participants will gain a deep understanding on how to achieve continuous compliance and consistent SBOM management in an automated way using a combination of oss compliance tools such as Linux Foundation’s FOSSology and Eclipse Foundation’s SW360 project.

Speakers

Anupam Ghosh

Technology Professional, Siemens Technology and Services Pvt. Ltd.

Anupam Ghosh works a Technology Professional with Siemens India, He is the Lead for Eclipse Sw360 project, maintainer for Linux Foundation's Fossology project, He has contributed and created and multiple tools including ML based solution for software compliance automation.

Arun Azhakesan

Sr. Manager Legal & Compliance, Siemens Healthineers

Arun Azhakesan leads the open source compliance activities at Siemens Healthineers. He is an active member of multiple open source communities that focus on developing open source-based tools for open source compliance.

Thursday September 21, 2023 15:00 - 15:40 CEST
Room 0C (Floor 0)

SupplyChainSecurityCon

15:55 CEST

Growing the Chain: Trusting Build Provenance from Userspace - Billy Lynch, Chainguard

Many tools like Cosign, npm, Goreleaser, and more are adding capabilities to make it easier to sign packages and artifacts in CI/CD workflows. However, generating provenance and attestations from user pipelines can be a source of risk - how do we trust that jobs configured by users are producing accurate information? In this talk, we'll look at how we can build a chain of trust that links artifacts, to CI configuration, to the build services that run them. You'll learn how open source technologies like Sigstore and OIDC make this work possible, what CI providers and users need to establish this trust, and examples in the wild that do this to establish trust for their builds.

Speakers

Billy Lynch

Staff Software Engineer, Chainguard

Billy is a staff software engineer at Chainguard, working on developer tools and securing software supply chains for everyone! He is an active contributor and maintainer to the Sigstore and Tekton projects, and is the creator of gitsign. Prior to working at Chainguard, Billy worked... Read More →

Thursday September 21, 2023 15:55 - 16:35 CEST
Room 0E-1 (Floor 0)

CloudOpen

15:55 CEST

Automated & Observable Deployments with Flux + Keptn - Priyanka Ravi, Weaveworks

Continuous delivery is an essential part of modern software development, and Kubernetes has become the de-facto standard for container orchestration. However, managing the entire delivery pipeline can be challenging, especially in a cloud native environment. In this talk, we’ll explore how Flux and Keptn can be used together to automate and bring observability to your Kubernetes deployments. Flux is a set of continuous and progressive delivery solutions for Kubernetes that are open and extensible. Flux keeps your Kubernetes clusters in sync with sources of configuration (like Git repositories), and automates updates to configuration when there is new code to deploy. The Keptn Lifecycle Toolkit (KLT) implements observability for deployments that are implemented with standard GitOps tools, like Flux, and brings application awareness to your Kubernetes clusters. In this talk, we will discuss and demo how Flux and Keptn can be used together to manage the complete application lifecycle. By the end of this talk, attendees will have a clear understanding of how to use Flux and Keptn Lifecycle Toolkit together to seamlessly provide automation, observability, and orchestration of your GitOps deployments in Kubernetes.

Speakers

Priyanka Pinky Ravi

Developer Experience Engineer, Weaveworks

Priyanka (aka “Pinky”) is a Developer Experience Engineer at Weaveworks. She has worked on a multitude of topics including front end development, UI automation for testing and API development. Previously she was a software developer at State Farm where she was on the delivery... Read More →

OSS Bilbao Flux and Keptn pdf

Thursday September 21, 2023 15:55 - 16:35 CEST
Room 0A (Floor 0)

ContainerCon

Presentation Slides Attached Yes

15:55 CEST

IMA Namespaces for Containers - Asier Gutierrez, Huawei

Containers are revolutionizing the way workloads are automated, deployed and scaled, and are widely used in Cloud scenarios.

We focus on containers security enhancement based on Linux kernel namespaces. Linux kernel provides IMA (Integrity Measurement Architecture) for attesting files in the system.

The current IMA implementation is not container aware. It doesn’t know when and which a container integrity failed. Our proposal compensates the lack of kernel-related features for container's security.

Our proof of concept also integrates this implementation with Kubernetes orchestration system.

We also have developed a remote attestation prototype, which can detect changes in files inside containers.

Speakers

Asier Gutierrez

Senior software engineer, Huawei

I am originally from Spain, not far away from Bilbao, but I am currently living in Russia. I have worked as a software developer for companies like Intel, IBM, Yandex and now Huawei.I have developed mainly in C and C++, although I've done work in other languages like go, rust and... Read More →

osse 23 ima pdf

Thursday September 21, 2023 15:55 - 16:35 CEST
Room 0B (Floor 0)

LinuxCon

Presentation Slides Attached Yes

15:55 CEST

Ostree for the Uninitiated - What You Need to Get Up and Running with Ostree on Your Next Project - Davis Roman, Lucid Motors

Ostree is a next generation update system. It supercharges your projects' ability to apply, rollback, and diff updates.Most buildsystems such as the yocto project already provide support meaning that it's easy to get up and running. The main hurtle for most beginners are the various commands as well as additional jargon that Ostree introduces. The goal of this talk to to break it down for new beginners from soup to nuts. Most other talks already assume some familiarity with ostree but not this one. You'll start from square one and it'll take you from zero to hero in 45 minutes.

Speakers

Davis Roman

Lucid Motors

Davis Roman is an embedded linux engineer with more than 15 years of experience in the home security and, as of recently, the automotive sector. He's worked on various products from conception to production and always serves to be a champion for Linux and open source no matter where... Read More →

Thursday September 21, 2023 15:55 - 16:35 CEST
Room 0E-2 (Floor 0)

LinuxCon

15:55 CEST

Overcoming I/O Bottlenecks in LLM Training with Open-Source Distributed Caching - Lu Qiu & Jasmine Wang, Alluxio

Large Language Model (LLM) training is a resource-intensive process, necessitating significant storage, CPU, and GPU resources, along with frequent I/O of numerous small files. As LLMs grow more complex, the demand for high-performance, scalable data processing solutions increases, especially in the context of distributed cloud training. Traditional data platform architectures struggle to maintain the needed I/O throughput, resulting in underutilized GPUs and inefficient resource usage. In this technical presentation, Lu Qiu & Jasmine Wang will dive deep into an innovative open-source architecture that optimizes I/O throughout the model training pipeline, ensuring adequate throughput for GPU workloads. She will explore the integration of a distributed caching system with TensorFlow/PyTorch workloads running in the cloud and discuss techniques for overcoming I/O challenges in model training. This architecture improves performance, reduces metadata latency, and enables high GPU utilization. Participants will gain insights into implementing this architecture for enhanced resource efficiency and adaptability to real-time workloads. They will also learn from practical, real-world examples, including Zhihu (China's Quora), illustrating the benefits of this open-source approach.

Speakers

Jasmine Wang

Head of Community & Developer Relations, Alluxio

Jasmine Wang is the Head of Community and DevRel at Alluxio. She is a former national debate champion who turned into a traveling yoga teacher with a strong passion in building teams and being the bridge at early startups in Silicon Valley. Previously, she worked as the Head of Global... Read More →

Lu Qiu

Machine Learning Engineer, Alluxio

Lu Qiu is a machine learning engineer at Alluxio and is a PMC maintainer of the open source project Alluxio. Lu develops big data solutions for AI/ML training. Before that, Lu was responsible for core Alluxio components including leader election, journal management, and metrics management... Read More →

Data Caching Strategies for LLM pdf

Thursday September 21, 2023 15:55 - 16:35 CEST
Room 0D-2-0D-3 (Floor 0)

Open AI & Data Forum

Presentation Slides Attached Yes