Dejan Bosanac
I’m a software engineer working for Red Hat, with an interest in open source and integrating systems. Over the years I’ve been involved in various open source communities tackling problems like:
- Enterprise messaging and integration (Apache ActiveMQ)
- IoT platforms (Drogue IoT / Eclipse IoT / Eclipse Hono)
- Edge computing (Kubernetes IoT Edge working group)
Talks
-
How is this sausage made?
We are often told not to ask how the sausage is made. But what if we are the ones making the sausage (or software in this instance)? Do we wanna make sure only verified ingredients went in and that our customers and users are safe and sound? Software supply chain security is a relatively new field trying to provide standards and tools that will help organizations deliver safe software products.
-
All you wanted to know about software vulnerabilities but were too busy to look into
Vulnerability discovery is one of the crucial aspects of software supply chain security. We want to know which of the components in our software projects are affected by certain vulnerabilities, are they exploitable and how severe exploits are. In this session, we will look behind the scene of software vulnerability management. Where is all the data coming from? What are the formats in which data is exchanged? And how to use them.