Loading…
This event has ended. Create your own event → Check it out
This event has ended. Create your own
View analytic
Wednesday, July 29 • 12:30pm - 1:20pm
Building World-class Security Response and Secure Development Processes for the OpenDaylight Project - David Jorm

Sign up or log in to save this to your schedule and see who's attending!

Security is critical to building a successful software-defined networking platform. Shifting the implementation of networking features from hardware and proprietary software to open source software has many benefits, but the software must be secure. Building and maintaining secure software is a difficult process, that requires community members with different roles and skills to collaborate quickly and effectively. This presentation will outline the current status of OpenDaylight’s security response and secure development processes, and then provide a vision for evolving these processes to surpass those of proprietary vendors. It will cover:
  • Security training for developers
  • Identifying security vulnerabilities during code review
  • Automated QE/CI tests to catch security flaws and regressions
  • Managing vulnerabilities in dependencies
  • Responding to critical vulnerabilities

Speakers
avatar for David Jorm

David Jorm

David has been involved in the security industry for the last 15 years. During this time he has found high-impact and novel flaws in dozens of major Java components. He has worked for Red Hat's security team, led a Chinese startup that failed miserably, wrote the core aviation meteorology system for the southern hemisphere, and has been quoted in a major newspaper as saying North Korea's nuclear program is "ready to rock". He is currently... Read More →


Wednesday July 29, 2015 12:30pm - 1:20pm
Grand Ballroom A

Attendees (11)