Local/national government
PLENARY 4 : Securing the Open-Source Frontier: Navigating Supply Chain Risks
Are you sure?
Do you want to register for this session?
Open-source components are literally everywhere in the digital infrastructure, products and services. The modern ecosystem offers a wealth of advantages for an open-source software developer, enabling fast, permission-less innovation However, incorporating third-party code, even from trusted sources, introduces an element of uncertainty. This uncertainty is precisely where supply chain attacks come into play and underscore the need for a proactive approach to security.
When contributing to or relying on open-source or any software development projects, it is essential to consider the integrity of the entire supply chain and ensure that all contributors across the chain adhere to best security practices. Collaborative efforts within the open-source community, such as code audits and timely updates, are essential in maintaining a robust defence against supply chain threats.
The panel will bring together experts in the area of software supply chain, open source and the software industry. It will discuss how open source empowers developers, but also obliges them to be vigilant guardians of the software supply chain and how, balancing the benefits with the risks, security measures are essential to uphold the trust placed in open-source development.
Moderated by Mirko Presser, Associate Professor, Aarhus University
Camille Moulin has been an open-source and open-standards advocate for a number of years now. He is currently working as a consultant at Inno³, a niche French consultancy specialised in all things open from an IP and organisational point of view. In this role, he focuses on legal compliance and FOSS sustainability issues.
SME
PLENARY 4 : Securing the Open-Source Frontier: Navigating Supply Chain Risks
Are you sure?
Do you want to register for this session?
Open-source components are literally everywhere in the digital infrastructure, products and services. The modern ecosystem offers a wealth of advantages for an open-source software developer, enabling fast, permission-less innovation However, incorporating third-party code, even from trusted sources, introduces an element of uncertainty. This uncertainty is precisely where supply chain attacks come into play and underscore the need for a proactive approach to security.
When contributing to or relying on open-source or any software development projects, it is essential to consider the integrity of the entire supply chain and ensure that all contributors across the chain adhere to best security practices. Collaborative efforts within the open-source community, such as code audits and timely updates, are essential in maintaining a robust defence against supply chain threats.
The panel will bring together experts in the area of software supply chain, open source and the software industry. It will discuss how open source empowers developers, but also obliges them to be vigilant guardians of the software supply chain and how, balancing the benefits with the risks, security measures are essential to uphold the trust placed in open-source development.
Moderated by Mirko Presser, Associate Professor, Aarhus University
Alexander Nussbaumer received a doctoral degree in Computer Science from Graz University of Technology, Austria. After working in industry as software developer, he joined the Cognitive Science Section of the Department of Psychology at the University of Graz in 2006. Since 2009 he has been member of the Cognitive Science Section and later the Cognitive and Digital Science Lab of the Institute of Interactive Systems and Data Science (ISDS) at Graz University of Technology, Austria. He has been managing and participating various EC-funded research projects in the field of digital learning, medical training, cultural heritage, secure society research, smart city research, and online disinformation. His research interests focus on the intersection area between computer science, cognitive psychology, and computer ethics. Currently he is working in the OpenWebSearch.eu project on search applications, human factors, and ethical aspects.
Educational institution
The Graz University of Technology is a public research and educational university located in Styria, Austria. It comprises seven faculties and offers study programmes across all technology and natural sciences disciplines. Research areas are combined in five fields of expertise. p { line-height: 115%; margin-bottom: 0.1in; background: transparent }
PLENARY 4 : Securing the Open-Source Frontier: Navigating Supply Chain Risks
Are you sure?
Do you want to register for this session?
Open-source components are literally everywhere in the digital infrastructure, products and services. The modern ecosystem offers a wealth of advantages for an open-source software developer, enabling fast, permission-less innovation However, incorporating third-party code, even from trusted sources, introduces an element of uncertainty. This uncertainty is precisely where supply chain attacks come into play and underscore the need for a proactive approach to security.
When contributing to or relying on open-source or any software development projects, it is essential to consider the integrity of the entire supply chain and ensure that all contributors across the chain adhere to best security practices. Collaborative efforts within the open-source community, such as code audits and timely updates, are essential in maintaining a robust defence against supply chain threats.
The panel will bring together experts in the area of software supply chain, open source and the software industry. It will discuss how open source empowers developers, but also obliges them to be vigilant guardians of the software supply chain and how, balancing the benefits with the risks, security measures are essential to uphold the trust placed in open-source development.
Moderated by Mirko Presser, Associate Professor, Aarhus University