2014 was a hard year for open source software. The year was filled with Heartbleed, ShellShock, BERserk, and other vulnerabilities. These vulnerabilities were broadly discussed, even in news media that generally never cover these things such as CNN and Fox News. The question is, was this amount of attention really justified?
This presentation will take the data from the open CVE database and determine if there really is a striking change in the number of vulnerabilities, in either the frequency or severity of software security bugs, in open source software. We’ll also compare those two metrics to well-known proprietary counterparts.
This presentation will be extremely detailed on the data and be no-holds-barred when it comes to the direction that the data leads. Everyone will be able to see:
Constanza Heath is a Security Researcher in Intel’s Open Source Technology Center organization, which includes design of core security features, review, and implementation of software solutions and communication services. She currently focuses on IoT security and enablement while making time to shepherd a Security Working Group inside Intel. She has architected several middleware software interfaces and meta-data aggregation services for OTC’s Moblin, MeeGo and Tizen operating systems and most recently promoted the Intel XDK as an HTML5 Evangelist. Her career has taken her up and down the software stack, making security a natural discipline. She joined Intel in 2010, after spending six years with Hewlett Packard as a Firmware Specialist, and three years at Raytheon’s Vision Systems, Remote Satellite, and Electronic Warfare divisions. As a former advisor to the Ada Initiative, and a member of SWE, Constanza is an avid supporter of local community groups. She has participated in events around AAUW’s Equal Pay Day and STEM programs and helped run several programs for the advancement of women in technology. Known as ‘mnementh’ to fellow hackers on IRC, you can also find her on Twitter at @hackermnementh.
Comments on this page are now closed.
©2015, O'Reilly Media, Inc. • (800) 889-8969 or (707) 827-7019 • Monday-Friday 7:30am-5pm PT • All trademarks and registered trademarks appearing on oreilly.com are the property of their respective owners. • email@example.com