by Jim Perrin (@jperrin) on Thursday, 30 March 2017

+9
Vote on this proposal
Status: Confirmed & Scheduled
View session in schedule
Section
Full talk of 40 mins duration

Technical level
Beginner

Abstract

IoT is growing explosively, but we often hear about security failings around poor development. In this talk, we’ll look at what lessons we can take from using a full traditional linux distribution as the base of our IoT platform, and how we can package updates for distribution.

The audience for this talk is anyone with an interest in basic IoT development.

Outline

In this talk, I’ll cover common bad practices in IoT, why a full distribution isn’t as crazy as it sounds for an IoT platform, and the tradeoffs for using one over the other.

Speaker bio

Jim has been a member of the CentOS project for over a decade, and is the maintainer of the ARMv8/AArch64 port of the CentOS Linux distribution.

Comments

  • 1
    [-] sankarshan mukhopadhyay (@sankarshanmukhopadhyay) 9 months ago

    Jim, thank you for submitting this proposal. Quick set of clarifying questions - would your talk also include any demo to drive home the notion that weak security practices at edges make infrastructure vulnerable? I ask this in context of the latest and somewhat “popular” CVE around a consumer appliance.

    • 1
      [-] Jim Perrin (@jperrin) Proposer 9 months ago

      I won’t have a physical demo to show, but I will talk about real-world CVE examples and “time-to-available-patch” via fedora and CentOS, as well as how the updates could work in a proper setup.

      • 1
        [-] Zainab Bawa (@zainabbawa) Reviewer 9 months ago

        Please share draft slides for this talk, to better understand how the content will be structured.

        • 1
          [-] Zainab Bawa (@zainabbawa) Reviewer 9 months ago

          Also, how is this talk relevant for an audience of systems engineers and DevOps folks who come to Rootconf? I wonder if this is better for a conference like Fifthel. https://fifthelephant.talkfunnel.com/2017

          • 1
            [-] Jim Perrin (@jperrin) Proposer 9 months ago

            This is aimed primarily at the developers of larger IoT devices, gateways and other systems that are moving toward IoT, and so the target audience is more toward the traditional Ops/DevOps person tasked with building out the OS. It also aligns more toward the modularity work happening in Fedora and CentOS currently.

            I won’t be available to travel to attend Fifthel, so this is the only chance to present in India this year.

            • 1
              [-] Zainab Bawa (@zainabbawa) Reviewer 9 months ago

              We have confirmed your talk for DevConf and sent you an email with follow-up questions. See you in Bangalore.

Login with Twitter or Google to leave a comment