Build Systems that Drive Business
30–31 Oct 2018: Training
31 Oct–2 Nov 2018: Tutorials & Conference
London, UK

Schedule: Building Secure Systems sessions

Security can no longer be a bolt-on at the end of projects. This track explores how to incorporate security best practices into your system architecture from the ground up into every layer of your applications.

Track host

Erik St. MartinErik St. Martin (Microsoft) curiosity of computers began in his early childhood years playing on a family member's Macintosh SE. He was too young to understand the world of programming then, but it was enough to peak his interest. In his teen years the internet became very popular and he was infatuated with the concept of building his own websites, and like all teenage computer geeks the thrill of "learning to hack". He cut his teeth building his own websites and learned to program by modifying open-source forum software in Perl and PHP, and running his own Counter-Strike servers. Before he knew it he was being offered money to program as a profession. He has been in the open-source and Linux world ever since.

14:0017:30 Wednesday, 31 October 2018
Location: King's Suite - Balmoral
Secondary topics:  Systems Architecture & Infrastructure
Mandi Walls (Chef)
Average rating: ****.
(4.00, 1 rating)
Mandi Walls offers an introduction to working with and creating comprehensive security and compliance profiles with InSpec—a human-readable language for creating and operating security and compliance profiles for your infrastructure. Read more.
11:2012:00 Friday, 2 November 2018
Location: Park Suite (St. James / Regents)
Secondary topics:  Resilient, Performant & Secure Distributed Systems
Liz Rice (Aqua Security)
Average rating: ****.
(4.75, 4 ratings)
Beyond looking out for a little green padlock in the browser bar, what do you need to know about secure connections as a programmer? What do people mean by terms like authentication, verifying a certificate, or signing a message? Join Liz Rice as she demystifies HTTPS, TLS, X.509, and more. Read more.
13:1513:55 Friday, 2 November 2018
Location: Park Suite (St. James / Regents)
Elisa Heymann (University of Wisconsin-Madison), Bart Miller (University of Wisconsin-Madison)
Average rating: ***..
(3.00, 3 ratings)
Elisa Heymann and Bart Miller explain how they performed an in-depth assessment of software controlling maritime container shipping, exposing opportunities for an attacker to smuggle goods or divert shipments and even damage personnel and ships. Read more.
15:4016:20 Friday, 2 November 2018
Location: Park Suite (St. James / Regents)
Secondary topics:  Systems Architecture & Infrastructure
Sabree Blackmon (Scytale)
Average rating: ***..
(3.50, 2 ratings)
Sabree Blackmon offers an overview of the SPIFFE and SPIRE projects, which provide an open standard and toolchain for trusted communication in modern cloud computing environments, and explains how they are being used as a foundation for other infrastructure tools, including Hashicorp Vault, Lyft's Envoy, and Istio. Read more.
16:3517:15 Friday, 2 November 2018
Location: Park Suite (St. James / Regents)
Secondary topics:  Resilient, Performant & Secure Distributed Systems
Jermila Paul Dhas (Financial Times)
Average rating: ****.
(4.50, 2 ratings)
Jermila Paul Dhas explains how the cloud enablement team at the Financial Times proactively validates the security and compliance of the FT's entire cloud estate. Read more.