Open Source Summit Europe + ELC Europe 2017

Started in early 2000s Limux was often cited as the lighthouse project for Free/Open Source Software in the public administration. Since then we have regularly heard rumours about its stop. Have they now switched back to proprietary software again or not? Didn't they already migrate last year? Is it a trend that public administrations aren't using Free Software anymore? Have we failed and is it time to get depressed and stop what we are doing? Do we need new strategies? Those are questions people in our community are confronted with.

We will shed some light on those questions, raise some more, and figure out what we -- as individuals, companies or organisations -- can learn from it.

This session will discuss the following:
Why do 30 years old licenses cause compliance issues in today’s world of IoT, embedded devices and software stacks?

· Why have the risks of non-compliance increased?

· Why is it worth thinking about amending license requirements?

Thoughts on OSS licenses from the point of view of a legal expert who was involved in several OSS license infringement cases.

The global supply chain is a key challenge for effective compliance in Open Source. One significant step towards addressing this challenge have been taken by an initiative called OpenChain, which was created to provide Specification, Conformance and Curriculum material for managing Open Source Compliance. This talk will explain how to engage with the OpenChain Project, what benefits it brings in practical terms to commercial entities and how it can be expected to impact the market in the coming year. In a nutshell, OpenChain has the potential to revolutionize how we deal with Open Source in combination with software bills of materials like SPDX and tooling like FOSSology. This is because, taken together, these documents, processes and tools are commodifying the knowledge and methods applied by the largest companies and making them available for even the smallest entities. Jilayne Lovejoy, Principal Open Source Counsel, Arm, will share some insights regarding the path to OpenChain conformance.

Build a great Open Source Project and they will come, but without solid financial management, the project will have a short life. Many people discover that being a great coder and/or math geek doesn’t always directly translate to understanding cash flow and cost management.

The approach to organizational financial management is different for the for-profits, non-profits, or a project within a non-profit. Come to this session to learn the differences and gain insight into finance best practices in the non-profit Open Source world. The tips and techniques in this session, most of which have been used in the Yocto Project since inception, will help you sustain the health of your Open Source project or create one on a sound financial footing without doing any Spreadsheet KungFu.

The last few years has seen an explosion in news articles and media focusing on the Diversity and Inclusion issues in the tech world, specifically, Silicon Valley and the Bay Area. Millions of dollars have been spent by tech companies and organizations on touting their diversity numbers and portraying their unflinching commitment to increasing diversity and inclusion. The recent trend to staff up engineers to work on open source projects is gaining steam and bringing to light an even harsher climate for diversity efforts in the open source world.

A closer look at the numbers reveals that this specific needle is either not moving at all or moving in the wrong direction. The numbers are particularly disconcerting if one looks at the technical side of things. While some of the numbers have moved positively, we seem to have reached a plateau regardless of funding and awareness. What are the reasons for this? Shouldn’t we be seeing continued positive movement regarding this issue after all the hoopla? After all, open source is for everyone, not just the select, appointed few, right?

This talk will present some factual stories, statistics and real-world reasons on why all the talk and funding from companies and organizations towards diversity and inclusion is missing the mark. Rupa will, also, propose some solutions to address some of the issues.

This presentation covers a real-world case study of Bitdefender Hypervisor Introspection (HVI) that is based on Xen Project software. On April 14th, The Shadow Brokers released the Eternalblue exploit toolkit, which exploited an SMBv1 vulnerability across a wide range of Windows operating systems. The exploit was most famously used as a propagation mechanism for the WannaCryransomware. HVI prevented exploitation attempts with no prior knowledge of the exploit or underlying vulnerability. This talk will cover the exploit mechanism, how HVI detects its actions, and illustrate some of the advantages of HVI built through open source collaboration. Audience members will takeaway a better understanding of this type of exploit and how something like hypervisor introspection and security through a hypervisor approach can help companies avoid these types of new exploits.

The UNIX command line shell (bash) with it's many tools and possibilities is a very powerful but less and less used system. Harald Koenig will show interactively and step by step how to solve a problem "on the command line".
After solving "the problem of the day" you save your solution to a small shell script and create a new tool to solve this (or similar) problems in the future.

Creating more and more such small helper tools will make your own toolbox more usable and sophisticated and thus your daily work easier and more efficient.

Possible topics for a small script might be
- get fuel prices for your local fuel stations, store them and them with gnuplot
- analyze syslog entries for ssh breakin attempts, do some statistics and send complaint emails
- undelete raw images (CR2) from a cfcard (some type of forensics with shell tools).
- other ideas? email me your suggestions!

APIs form the connecting glue between modern applications and are used to connect third-party data services, public/private data sources, and other applications. The Open API Initiative (OAI) came together over two years ago to seek to create, evolve, and promote an open description format for API services that is vendor-neutral, portable, and evolves under shared governance. On August 7, the OAI announced the release of the OpenAPI Spec v3, completing a 7 month community effort. Based upon the open source Swagger project, the world's most popular framework for APIs, the prior version has over 18K daily downloads, over 3k know public GitHub repos, 44 targets in codegen from over 250 contributors. Come join this panel discussion to hear from industry leaders about the origins of the OpenAPI community, and the details of the new OAS v3.0.0 specification release, and the value of open community collaboration related to API development. 

Global confidence in institutions is in steep decline worldwide, from politics to business to schools and non-profits. Technology lets us down too, from AWS outages to surveillance teddy bears. Trust is essential to building a functioning society, but it's under serious threat. Open source software showed us how we could work together, even if we had no presumption to trust each other. Blockchain technology: distributed ledgers, smart contract systems, and more - take this a step further, helping us build distributed systems without requiring a controlling central actor.

Marta Piekarska, Director of Ecosystem at Hyperledger will speak to how she believes we're heading towards a future full of different blockchain ecosystems for different purposes and to keep it becoming a confusing mess, or worse a platform war, collaboration on common software infrastructure is key. The Open Source communities behind Linux, Apache, and other successful platform technologies have demonstrated how to do this successfully. She will speak to what Hyperledger is and how it is aimed at bringing that dynamic to the blockchain community, so that everyone can spend less time worrying about the plumbing and more time building new products and services.

A brief presentation on Blockchain and Hyperledger Fabric, hosted by the Linux Foundation. Louis will describe the how Hyperledger Fabrc enables industry grade Blockchains and current projects in this area. This presentation will also show you how to get onto Hyperledger Fabric to set up your own Hyperledger Fabric Blockchain in a few simple steps and point you to further resources to develop you applications after the event.

Build a career doing what you love. Open source is an enabler and the community can be your best coach, mentor and referral. Whether you are a beginners or someone who has been working in open source for years, the speakers covers tips in building an open source career. On bringing out the best in yourself, the community and your project. 

The Modernization possibilities on the Most Scalable Compute Platform for Secure Data Driven Workloads

Open source has become a hub for innovation. New use cases such as containers, new classes of databases and programming languages are appearing rapidly.

In Industry Solutions today it really depends of the speed to quickly adopt to the changing business requirements. IBM has delivered the largest scalable server and defined the foundation for reliability business continuity and highest security. The new IBM LinuxONE Emperor II is able to easily handle and react on high dynamic Linux workloads from small to very large without disrupting applications or systems.

With a 5.2 GHz clock speed it can integrate heterogenous IT workloads and delivers a unique resource management concept, that lets you consolidate workloads in the most effective way. This empowers the focus for centralized IT management and ways to optimize the costs for the entire IT landscape.

This session will give you technical insides, but it as well shows you how the best of Linux and open technology with the best of Enterprise Computing comes together in ONE platform.