Category Archives: Linux

Save the Date: 2014 Linux Security Summit in Chicago

The 2014 Linux Security Summit will be held on the 18th and 19th of August, co-located with LinuxCon in Chicago, IL, USA.  The Kernel Summit and several other events will also be co-located there this year.

The Call for Participation will be announced later via the LSM mailing list.

Linux Security Summit 2013 – Schedule Published!

The schedule for this year’s Linux Security Summit in New Orleans is now published!

The keynote will be presented by Ted Ts’o.

Refereed talks include:

  • Embedded Linux Security (David Safford, IBM)
  • Extending AppArmor Mediation into the Userspace (John Johansen, Canonical)
  • Multiple Concurrent Security Models? Really? (Casey Schaufler, Intel)
  • Linux Kernel ASLR (Kees Cook, Google)
  • The AppArmor Labeling Model (John Johansen, Canonical)

It looks like there’s been quite a lot happening in AppArmor.  There’ll also be general project updates for SELinux, Smack, AppArmor and the Integrity subsystem, as well as a discussion on kernel coding anti-patterns led by Kees Cook.

There’ll be break-out sessions on the second day, details of which will be posted on the schedule as they’re known.  If you’ll be at LSS (or LinuxCon/Plumbers generally) and would like to schedule a break-out session, contact the program committee per the details at the wiki page.

See everyone on the 19th and 20th of September in New Orleans!

Slides from my Security Subsystem Overview at LinuxCon Japan 2012

Whoops. Looks like I forgot to post my slides from last year’s LinuxCon Japan talk on the Linux kernel security subsystem.

Here they are:

http://namei.org/presentations/kernel-security-state-linuxconjp-2012b.pdf

I’ll be giving an update at the upcoming LinuxCon Japan in Tokyo in a couple of weeks.

Linux Security Summit 2013 (New Orleans) – Call for Participation

The CFP for the 2013 Linux Security Summit has been announced.

The summit will be held across the 19th and 20th of September in New Orleans, co-located again with LinuxCon and Linux Plumbers. Note that presenters and attendees at LSS must be registered as LinuxCon attendees.

We’ll be following a similar format to last year, with a day of refereed presentations, followed by subsystem updates and break-out sessions on the second day. We’ll probably finish up around lunchtime on the Friday for people needing to head home that day, but check the final schedule for details once it’s published.

The CFP is open until 14th June, with speaker notifications to be posted by 21st June.

If you’ve been doing cool and interesting work in Linux security, be sure to submit a proposal!

Linux Security Summit 2012 – Slides published

Slides from the Linux Security Summit 2012 talks are now available via the schedule page.

It seems to have been a very successful event, with the move to a two-day format allowing for a day of refereed presentations, and then a day of more collaborative discussion. We’re aiming for a a similar format next year.

Thanks to everyone who made the event happen: presenters, attendees, the program committee, and of course, the great team at Linux Foundation, who made everything work flawlessly!

ETA: The slides from Matthew Garrett’s keynote on UEFI Secure Boot are now up.

Linux Security Summit 2012 – Schedule update

Just to let folks know who are attending, we’ve added a lightning talks slot to the LSS 2012 schedule, on Friday 31st August at 2pm.

If you have any emerging topics to discuss, come along on the day and contact me to schedule a slot. We have one confirmed talk already: Dave Jones will be discussing his Trinity system call fuzzing work.

Note that this change pushes the LF Linux Security Workgroup BoF back thirty minutes.

Congratulations to Chris Mason

As many of you will know, I started a new role at Oracle earlier in the year, going to work on Chris Mason’s team. He announced this week that he’s moving onto a new position at Fusion-io. His leadership at Oracle will be missed, and I would like to congratulate him on his new role.

Also, just to head off the inevitable internet rumours, I thought I’d post here that I will be taking on many of Chris’s previous responsibilities at Oracle, including leading the mainline kernel development team. We’re actively hiring, by the way, so if you want to hack on the Linux kernel for a great company—remotely, from almost anywhere on the planet—email me :-)

Kernel Security Talk at LinuxCon Japan

Just to let folk know — I’ll be giving a talk on the state of Linux kernel security development at LinuxCon Japan in Yokohama on June 8th. From the abstract:

In this talk, we’ll examine the current state of the Linux kernel security subsystem. Starting with a brief overview of existing features, we’ll discuss recent developments, current efforts and future directions. We’ll also discuss the evolving threat landscape, and the increasing need for mobile and cloud security. This will be a high-level technical discussion aimed at IT professionals. A good general knowledge of operating system and computer security concepts will be advantageous.

I’ll also likely be in Tokyo briefly — if any kernel security development folk there want to meet up, let me know.