September 5th, 2014 | Tags:

Just an FYI, I lost my GPG key a few months back during an upgrade, and have created a new one.  This was signed by folk at LinuxCon/KS last month.

The new key ID / fingerprint is: D950053C / 8327 23D0 EF9D D46D 9AC9  C03C AD98 4BBF D950 053C

Please use this key and not the old one!


						
Comments Off

The schedule for the 2014 Linux Security Summit (LSS2014) is now published.

The event will be held over two days (18th & 19th August), starting with James Bottomley as the keynote speaker.  The keynote will be followed by referred talks, group discussions, kernel security subsystem updates, and break-out sessions.

The refereed talks are:

  • Verified Component Firmware – Kees Cook, Google
  • Protecting the Android TCB with SELinux – Stephen Smalley, NSA
  • Tizen, Security and the Internet of Things – Casey Schaufler, Intel
  • Capsicum on Linux – David Drysdale, Google
  • Quantifying and Reducing the Kernel Attack Surface -  Anil Kurmus, IBM
  • Extending the Linux Integrity Subsystem for TCB Protection – David Safford & Mimi Zohar, IBM
  • Application Confinement with User Namespaces – Serge Hallyn & Stéphane Graber, Canonical

Discussion session topics include Trusted Kernel Lock-down Patch Series, led by Kees Cook; and EXT4 Encryption, led by Michael Halcrow & Ted Ts’o.   There’ll be kernel security subsystem updates from the SELinux, AppArmor, Smack, and Integrity maintainers.  The break-out sessions are open format and a good opportunity to collaborate face-to-face on outstanding or emerging issues.

See the schedule for more details.

LSS2014 is open to all registered attendees of LinuxCon.  Note that discounted registration is available until the 18th of July (end of this week).

See you in Chicago!

Comments Off

The CFP for the 2014 Linux Security Summit is announced.

LSS 2014 will be co-located with LinuxCon North America in Chicago, on the 18th and 19th of August.  We’ll also be co-located with the Kernel Summit this year.

Note that, as always, we’re looking for participation from the general Linux community — not just kernel people, and not just developers.  We’re interested in hearing about feedback from users, and discussing what kinds of security problems we need to be addressing into the future.

This year, we’re looking for discussion topics as well as paper presentations, so if you have anything interesting to talk about, send in a proposal.

The CFP closes on 6th June 21st June.

Comments Off

The 2014 Linux Security Summit will be held on the 18th and 19th of August, co-located with LinuxCon in Chicago, IL, USA.  The Kernel Summit and several other events will also be co-located there this year.

The Call for Participation will be announced later via the LSM mailing list.

Comments Off

The schedule for this year’s Linux Security Summit in New Orleans is now published!

The keynote will be presented by Ted Ts’o.

Refereed talks include:

  • Embedded Linux Security (David Safford, IBM)
  • Extending AppArmor Mediation into the Userspace (John Johansen, Canonical)
  • Multiple Concurrent Security Models? Really? (Casey Schaufler, Intel)
  • Linux Kernel ASLR (Kees Cook, Google)
  • The AppArmor Labeling Model (John Johansen, Canonical)

It looks like there’s been quite a lot happening in AppArmor.  There’ll also be general project updates for SELinux, Smack, AppArmor and the Integrity subsystem, as well as a discussion on kernel coding anti-patterns led by Kees Cook.

There’ll be break-out sessions on the second day, details of which will be posted on the schedule as they’re known.  If you’ll be at LSS (or LinuxCon/Plumbers generally) and would like to schedule a break-out session, contact the program committee per the details at the wiki page.

See everyone on the 19th and 20th of September in New Orleans!

Comments Off
May 13th, 2013 | Tags: , , , , , , , ,

Whoops. Looks like I forgot to post my slides from last year’s LinuxCon Japan talk on the Linux kernel security subsystem.

Here they are:

http://namei.org/presentations/kernel-security-state-linuxconjp-2012b.pdf

I’ll be giving an update at the upcoming LinuxCon Japan in Tokyo in a couple of weeks.

Comments Off

The CFP for the 2013 Linux Security Summit has been announced.

The summit will be held across the 19th and 20th of September in New Orleans, co-located again with LinuxCon and Linux Plumbers. Note that presenters and attendees at LSS must be registered as LinuxCon attendees.

We’ll be following a similar format to last year, with a day of refereed presentations, followed by subsystem updates and break-out sessions on the second day. We’ll probably finish up around lunchtime on the Friday for people needing to head home that day, but check the final schedule for details once it’s published.

The CFP is open until 14th June, with speaker notifications to be posted by 21st June.

If you’ve been doing cool and interesting work in Linux security, be sure to submit a proposal!

Comments Off

This year’s Linux Security Summit will be co-located with LinuxCon (along with Linux Plumbers) in New Orleans, USA, on the 19th and 20th of September.

The format is expected to be similar to the 2012 summit.

A CfP will be issued soon.

Comments Off
September 11th, 2012 | Tags:

Slides from the Linux Security Summit 2012 talks are now available via the schedule page.

It seems to have been a very successful event, with the move to a two-day format allowing for a day of refereed presentations, and then a day of more collaborative discussion. We’re aiming for a a similar format next year.

Thanks to everyone who made the event happen: presenters, attendees, the program committee, and of course, the great team at Linux Foundation, who made everything work flawlessly!

ETA: The slides from Matthew Garrett’s keynote on UEFI Secure Boot are now up.

Comments Off
August 29th, 2012 | Tags:

Just to let folks know who are attending, we’ve added a lightning talks slot to the LSS 2012 schedule, on Friday 31st August at 2pm.

If you have any emerging topics to discuss, come along on the day and contact me to schedule a slot. We have one confirmed talk already: Dave Jones will be discussing his Trinity system call fuzzing work.

Note that this change pushes the LF Linux Security Workgroup BoF back thirty minutes.

Comments Off