The Linux Foundation Member Summit: Full Schedule

November 19-21 2024
Napa, California
View More Details & Registration
Note: The schedule is subject to change.

The Sched app allows you to build your schedule but is not a substitute for your event registration. You must be registered for the event to participate in the sessions. If you have not registered but would like to join us, please go to the event registration page to purchase a registration.

This schedule is automatically displayed in Pacific Daylight Time (UTC/GMT -8). To see the schedule in your preferred timezone, please select from the drop-down menu to the right, above "Filter by Date."

IMPORTANT NOTE: Timing of sessions and room locations are subject to change.

11:30am PST

The State of Open Source Funding: Learnings from a Survey of Top Open Source Funders - Kevin Crosby, GitHub & Sam Boysel, Harvard Business School

Tuesday November 19, 2024 11:30am - 12:00pm PST

Silverado East

Understanding how and why organizations invest in and fund open source is not well understood, yet open source is inextricably woven into the entire software industry. This presentation summarizes findings from a 2024 Open Source Funding Survey about how and why organizations and companies contribute and fund open source. Leverage learnings to apply to your own programs as benchmarks. The survey is a collaboration between GitHub, Linux Foundation and researchers at Harvard University. High level insights: Organizations are quick to cite OSS as critical to infrastructure, to employees, and culture - 82% consider funding OSS as critical and 29% have OSPOs. Organizations tend to have a very good understanding of how and why they make code contributions to OSS - median organization allocate 250-1000 labor hours annually to OSS code and most contributions are made to projects managed by the organization itself or upstream. Organizations make non-code contributions along a number of dimensions - Median organization estimates the value of annual non-code contribution at

Speakers

Kevin Crosby

Open Source Funding, Sr. Dir., GitHub

Kevin Crosby is Senior Director of Open Source Funding. Prior to GitHub, Kevin led business development for VC and Accelerators at Carta and spent 8 years at Amazon in corporate venture and leading product, engineer, and business teams. He is an active investor and advisor to venture... Read More →

Sam Boysel

Postdoctoral Fellow, Harvard Business School

Sam is a postdoctoral fellow at the Laboratory for Innovation Science at Harvard. His research interests lie at the intersection of digital economics, labor and productivity, industrial organization, and socio-technical networks. Specifically, his work has centered around the private... Read More →

Tuesday November 19, 2024 11:30am - 12:00pm PST
Silverado East

Sustainability & Innovation in Open Source

Content Experience Level Intermediate

12:15pm PST

(Re)Stabilizing the Open Source Software Supply Chain - Philip Robb, Ericssson Software Technology

Tuesday November 19, 2024 12:15pm - 12:45pm PST

Sebastiani & Beringer

For members of the Linux Foundation, open-source software is recognized as critically essential to modern software development. Without it, the breadth and pace of innovation would plummet, and the costs to develop products and services based on software would skyrocket. Over the past several years, we've seen a destabilization of the open-source supply chain. Projects with poor security practices, malicious repo takeovers, and license rug-pulls are a small sample of the growing list of threats facing open-source users. As the largest commercial benefactors of this software supply chain, we have the most to lose. Efforts to address these issues have begun but are under-resourced and moving slowly. This is a Prisoner’s Dilemma & Free-Rider problem that needs a solution, or we are all worse off. This presentation will explore what methods can be brought to bear to increase development, oversight, and quality assurance in the open-source software supply chain to break out of the prisoner’s dilemma. How do those who invest in such work get an appropriate ROI? Can industry and governments work together to find a solution?

Speakers

Phil Robb

Head of Ericsson Software Technology, Ericsson Software Technology

Phil is the Head of Ericsson Software Technology (EST), where he leads a passionate group of engineers developing open source software across a wide range of projects. Prior to Ericsson, Phil was the V.P. of Operations for the Networking Projects at the Linux Foundation for six years... Read More →

Tuesday November 19, 2024 12:15pm - 12:45pm PST
Sebastiani & Beringer

Building & Managing Healthy OS Projects

Content Experience Level Intermediate

12:15pm PST

Small Project Maintainership: The Dark Matter of Open Source - Luis Villa, Tidelift & Jordan Harband, HeroDevs

Tuesday November 19, 2024 12:15pm - 12:45pm PST

Silverado East

As anyone who has ever run a license or security scan knows, *numerically*, the vast majority of packages installed and used by modern software shops are small packages with one maintainer. Those folks mostly don’t show up to conferences like this one, so they can be “dark matter”—we know they’re there but know little more about them. This panel will use survey data (from Tidelift, Harvard, CMU, and others) to help draw a sharper, data-driven, picture—what motivates these maintainers, what sorts of security practices they do (and don’t) do, and what sorts of value we draw from them. Maintainer Jordan Harband will then use his wide expertise as a maintainer of dozens of key packages to provide human context to the data.

Speakers

Jordan Harband

Principal Open Source Architect, HeroDevs

Jordan Harband is an Open Source maintainer, primarily in JavaScript, and a Principal Open Source Architect at HeroDevs. He maintains many open source projects: see https://npmjs.com/~ljharb and https://github.com/ljharb, participates in TC39 (the JS language specification committee... Read More →

Luis Villa

Co-founder and General Counsel, Tidelift

Luis has been involved in open since the late 90s, first as a developer and then as an attorney and leader, including at Mozilla, the Wikimedia Foundation, and as outside counsel for startups and titans. He's also served on the boards of the Open Source Initiative, Creative Commons... Read More →

Tuesday November 19, 2024 12:15pm - 12:45pm PST
Silverado East

Sustainability & Innovation in Open Source

Content Experience Level Intermediate

2:15pm PST

Trust in Open Source - Mike Bursell, Confidential Computing Consortium

Tuesday November 19, 2024 2:15pm - 2:45pm PST

Silverado East

After XZ, OpenJS came the realisation within the community that we don't really understand how trust works within the ecosystem of open source projects, their contributors, maintainers and consumers. This is a socio-technical problem, and in order to understand it and to work out how to build stronger, more secure ties across the ecosystem, we don't just need to engage in technical innovation but also delve in the fields of sociology, behaviour psychology, organisational theory and beyond. This talk will discuss some of the existing work in the field in a relatable (not overly academic!) way and consider plausible research directions and topics. It aims to be a strongly interactive session and the hope is to encourage formation and involvement in this important work.

Speakers

Mike Bursell

Executive Director, Confidential Computing Consortium

Mike Bursell is the Executive Director of the Confidential Computing Consortium. He is one of the co-founders of the Enarx project (https://enarx.dev), and was CEO and co-founder of Profian, a start-up based on Enarx. He has previously served on the Governing Boards of the CCC... Read More →

Tuesday November 19, 2024 2:15pm - 2:45pm PST
Silverado East

Security & Trust & Ethics in Open Source

Content Experience Level Intermediate

3:00pm PST

Zephyr: Overview and Roadmap - Kate Stewart, The Linux Foundation

Tuesday November 19, 2024 3:00pm - 3:30pm PST

SIlverado West

This session will provide an overview of the project's accomplishments to date, and provide a roadmap of what is being planned for 2025. Zephyr project is now the 5th most active project hosted by the Linux Foundation. Each release sees about 30% new contributors, and these contributors are resulting in around 3 changes per hour in the code base. Products as diverse as Chromebooks, to Wind Turbines, to Hearings Aids, and Pet Trackers are being built with Zephyr. Learn about the open source and security best practices that have been applied to Zephyr over the years, and why it is now one of the most active open source projects at the Linux Foundation.

Speakers

Kate Stewart

VP Dependable Embedded Systems, Linux Foundation

Kate Stewart works with the safety, security and license compliance communities to advance the adoption of best practices into embedded open source projects. She has launched the ELISA and Zephyr Projects, as well as supporting other embedded projects. With more than 30 years of experience... Read More →

Tuesday November 19, 2024 3:00pm - 3:30pm PST
SIlverado West

OS Project Highlights

Content Experience Level Intermediate

4:15pm PST

Alliance for OpenUSD: Building the HTML for 3D Worlds - Guy Martin, NVIDIA

Tuesday November 19, 2024 4:15pm - 4:45pm PST

SIlverado West

This session will provide an overview of the Alliance for OpenUSD, an LF Joint Development Foundation project aimed at building a set of specifications to formalize the Pixar Open Universal Scene Description technology. Specific topics covered will include the alliance's purpose, work to date, as well as special focus on collaboration and interaction with the open source community and other Linux Foundation consortia such as the Academy Software Foundation.

Speakers

Guy Martin

Director, Open Source & Standards, NVIDIA

Guy Martin is Director of Open Source & Standards at NVIDIA, where he’s responsible for helping shape the strategy of key open source and standards efforts such as Universal Scene Description (OpenUSD) & Material Definition Language (MDL). His experience includes stints building... Read More →

Tuesday November 19, 2024 4:15pm - 4:45pm PST
SIlverado West

OS Project Highlights

Content Experience Level Intermediate

4:15pm PST

Introducing the Post-Quantum Cryptography Alliance - Michael Maximilien, IBM

Tuesday November 19, 2024 4:15pm - 4:45pm PST

Silverado East

There is a looming threat to all on the horizon. Today’s data and communications are secured using various forms of public-key encryption. These schemes are all (principally) based on the surprising complexity of factoring large numbers. The issue with modern-based cryptography is that, in 1994, Peter Shor discovered a quantum algorithm that can break modern encryption when executed on large enough quantum computers (QCs). What can we do today to protect from this looming threat? The QC and cryptography communities have been hard at work on devising new encryption algorithms that can be resistant to QCs. Working closely with the Linux Foundation and leaders of the cryptography and OSS community the Post-Quantum Cryptography Alliance (PQCA) was created to host and lead a collection of initial post-quantum projects that can be used to make the world’s software quantum safe. As part of the original representative members of the PQCA, Max has seen the progression of the alliance from its inception at the LF Member’s Summit 2022 to its current form. In this talk, he will present the foundation and its charter along with an overview of the current projects and algorithms.

Speakers

Michael Maximilien

Distinguished Engineer, IBM

Max is an IBM Distinguished Engineer and leader for the teams contributing to Open Quantum and Serverless. Max has held elected and leadership positions in Cloud Foundry and Knative OSS communities. Max's main expertise are in software engineering and distributed systems. Max published... Read More →

Tuesday November 19, 2024 4:15pm - 4:45pm PST
Silverado East

Security & Trust & Ethics in Open Source

Content Experience Level Intermediate

5:00pm PST

A Secure, Stable Linux Kernel for the Long Run - Gustavo Padovan, Collabora Ltd

Tuesday November 19, 2024 5:00pm - 5:30pm PST

Silverado East

We all depend on the Linux kernel for critical parts of our society's infrastructure. Yet, our capacity to keep our Linux systems up to date with the latest features, security, and stability fixes is rather limited. Companies are collectively wasting millions and millions of dollars upgrading their systems to new kernels. I am sure you can relate to that! The Linux kernel community does a fantastic job developing the Linux kernel. It is an ever-evolving operating system that becomes more secure, stable, and feature rich every day. However, rebasing existing infrastructure on new kernels is not straightforward at all. We still lack processes, tools, and culture to make that job smoother in the Linux kernel ecosystem. KernelCI, a project under the Linux Foundation, is on a mission to change that. Our goal is to support the community and companies to ensure the quality, stability, and long-term maintenance of the Linux kernel while also reducing product integration costs drastically. In this talk, you will learn what KernelCI is, what we are doing to improve this situation, and, more importantly, what you can do to help!

Speakers

Gustavo Padovan

Kernel lead, Collabora Ltd

Gustavo leads Linux kernel strategy at Collabora - a well respected Open Source Software consultancy that helps top companies in the world create the next generation of technology with Open Source Software inside. He is also one of the driving forces behind the KernelCI Foundation... Read More →

Tuesday November 19, 2024 5:00pm - 5:30pm PST
Silverado East

Security & Trust & Ethics in Open Source

Content Experience Level Intermediate

10:00am PST

Improving License Information in Fedora - Jilayne Lovejoy & Richard Fontana, Red Hat

Wednesday November 20, 2024 10:00am - 10:30am PST

Vintner's Court

The licensing of open source software, as embodied in source code and package metadata, has long suffered from lack of clarity and consistency. This has become more evident with the use of sophisticated license scanning tools. Discussions among open source legal and compliance experts often express the desirability of having such problems addressed upstream.

We will describe the progress on an initiative driven by Red Hat and the Fedora Project community to revitalize its traditional role of curating a distribution with careful attention to licensing. This initiative includes: improved documentation and explanation of license policies, evolution of "allowed" and "not allowed" license lists from a project wiki to a repository of machine-readable data; the use of SPDX identifiers in package license metadata, including close collaboration with the SPDX-legal community; and traceable license review process. We will cover an overview of the process, challenges faced and overcome, and planned next steps.

By sharing the Fedora approach, we hope others can learn or borrow from this work and also contribute to improving license information upstream.

Speakers

Jilayne Lovejoy

Product Counsel, Red Hat

Jilayne is a US lawyer and community leader and has held various community and in-house roles related to open source. She is a product counsel at Red Hat working on a variety of topics.Jilayne leads the Linux Foundation sponsored Software Package Data Exchange® (SPDX) legal team... Read More →

Richard Fontana

Senior Commercial Counsel, Red Hat

Richard Fontana is a lawyer at Red Hat and a member of the Products, Privacy and Innovation team in the Red Hat legal department. He specializes in legal matters relating to software development, with a significant focus on open source strategy and compliance as well as AI/machine... Read More →

Wednesday November 20, 2024 10:00am - 10:30am PST
Vintner's Court

Legal Track Sessions

Content Experience Level Intermediate

10:00am PST

Chasing the White Whale of Open Source - ROI - Bob Killen, Cloud Native Computing Foundation

Wednesday November 20, 2024 10:00am - 10:30am PST

Sebastiani & Beringer

Have you ever found yourself trying to justify a commitment to an open source project and struggled to communicate the value beyond the usual suspects, such as increased influence or attracting talent? You are not alone. In today’s economic climate, organizations are looking for more concrete returns; they want to know how their investment impacts their business goals. In this talk, Bob will go over some proven successful strategies and tools to help you convey the impact of your organization’s open source investment and provide a lightweight framework that can be used to continue to tell this story over-time and in a sustainable way.

Speakers

Bob Killen

Senior Technical Program Manager, Cloud Native Computing Foundation

Bob is a Senior Technical Program Manager at the Cloud Native Computing Foundation (CNCF), where he works to streamline processes, puts into practice projects aimed at connecting users and maintainers, and finds ways to surface the value of open source. Before this, Bob was an OSS... Read More →

Wednesday November 20, 2024 10:00am - 10:30am PST
Sebastiani & Beringer

OS Program Office (OSPO) / TODO Group

Content Experience Level Intermediate

10:00am PST

The Open Strategies of GenAI: Unlocking Potential Through Collaboration and Transparency - Anni Lai, Futurewei

Wednesday November 20, 2024 10:00am - 10:30am PST

Silverado East

In the evolving landscape of GenAI, open strategies are key drivers of innovation and widespread adoption. This preso explores how transparency, collaboration, and shared resources shape the future of GenAI. We will highlight fundamental principles, successful initiatives, and real-world case studies demonstrating how open-source models and datasets accelerate research and democratize access to cutting-edge AI capabilities. The discussion will address the challenges and opportunities of open strategies, balancing openness with security, and the impact on IP and community governance. Insights from recent research and industry trends will shed light on the implications for enterprise AI deployment and the broader AI ecosystem. Attendees will gain a comprehensive understanding of how open strategies in GenAI can unlock potential, foster innovation, and drive sustainable growth. This session is valuable for developers, researchers, policymakers, and business leaders seeking to harness the power of openness in AI.

Speakers

Anni Lai

Head of Open Source Operations & Marketing, www.futurewei.com

Anni drives Futurewei’s open source (O.S.) governance, process, compliance, training, project alignment, and ecosystem building. Anni has a long history of serving on various O.S. boards such as OpenStack Foundation, LF CNCF, LF OCI, LF Edge, and is on the LF OMF board and LF Europe... Read More →

Wednesday November 20, 2024 10:00am - 10:30am PST
Silverado East

Sustainability & Innovation in Open Source

Content Experience Level Intermediate

10:45am PST

Dependency Risk Management: A Guide for OSPOs - Ashley Wolf, GitHub

Wednesday November 20, 2024 10:45am - 11:15am PST

Sebastiani & Beringer

Open source software is ubiquitous and forms the backbone of modern digital infrastructure, yet it often hides dependency risks that can impact organizations significantly. At GitHub, where we depend on tens of thousands of open source packages, we have leveraged open source frameworks from OpenSSF and other communities and created strategies to assess and mitigate these risks. Join us as we explore how OSPOs can use open source tools and standards to create plans for identifying and addressing dependency risks to improve their overall risk profile and improve project health. The talk will cover strategies for engaging with key stakeholders, including security teams, and funding opportunities to build resilient and sustainable open source ecosystems.

Speakers

Ashley Wolf

Director, Open Source Programs, GitHub

Ashley Wolf is the Director of Open Source Programs at GitHub. She runs initiatives and programs to empower developers to be successful with open source. She is also passionate about helping companies participate in the open source community. Prior to joining GitHub, Ashley led the... Read More →

Wednesday November 20, 2024 10:45am - 11:15am PST
Sebastiani & Beringer

OS Program Office (OSPO) / TODO Group

Content Experience Level Intermediate

12:00pm PST

Model Openness Framework - Matt White, PyTorch Foundation

Wednesday November 20, 2024 12:00pm - 12:15pm PST

Vintner's Court

Speakers

Matt White

Executive Director, PyTorch Foundation. GM of AI., Linux Foundation

Matt White is the Executive Director of the PyTorch Foundation and GM of AI at the Linux Foundation. He is also the Director of the Generative AI Commons, an open community initiative focused on advancing responsible generative AI under the LF AI & Data Foundation. Matt has nearly... Read More →

Wednesday November 20, 2024 12:00pm - 12:15pm PST
Vintner's Court

Legal Track Sessions

Content Experience Level Intermediate

12:00pm PST

Beyond Upstream First: The Contribution Maturity Model - Theodore Ts'o, The Linux Foundation Technical Advisory Board

Wednesday November 20, 2024 12:00pm - 12:30pm PST

SIlverado West

Last year, the Linux Foundational's Technical Advisory Board published the Linux Kernel Contribution Maturity Model (CMM). The goal of the CMM is to encourage companies to allow and encourage their engineersto contribute to upstream development in ways that allow them to grow into leadership roles, improving the overall health of the Linux Kernel ecosystem. This talk explores how companies can improve their overall upstream community maturity, and how this benefits the company; their engineers, and the upstream development community.

Speakers

Theodore Ts'o

Staff Programmer, Google

Theodore Ts'o is the first North American Linux Kernel Developer, and started working with Linux in September, 1991. He previously served as CTO for the Linux Foundation, and is currently employed at Google.Theodore is a Debian Developer, and is the maintainer of the ext4 file system... Read More →

Wednesday November 20, 2024 12:00pm - 12:30pm PST
SIlverado West

Building & Managing Healthy OS Projects

Content Experience Level Intermediate

12:00pm PST

Verifiable Credentials: What Every OSS Project Needs to Know - Brian Behlendorf, The Linux Foundation

Wednesday November 20, 2024 12:00pm - 12:30pm PST

Silverado East

W3C Verifiable Credentials are spreading like wildfire, fed by a growing number of governments who are piloting and putting VC-based systems into production. The EU will be mandating their use by the end of 2025 for certain key citizen services. VCs and Digital Wallets can be used in privacy-preserving ways, opening the door to a different, better, more decentralized paradigm for granting access and permissions to web sites, apps, and key services. Come to hear about the use cases, the regulations, and the underlying technology that will likely emerge as a requirement for most meaningful open source projects to adopt at some point soon.

Speakers

Brian Behlendorf

Chief AI Strategist, CTO OpenWallet, The Linux Foundation

Brian has served most recently as General Manager and CTO of the Open Source Security Foundation (OpenSSF), has served as Executive Director of Hyperledger, and formerly as CTO of the World Economic Forum. He currently serves on the boards of the Electronic Frontier Foundation (EFF... Read More →

Wednesday November 20, 2024 12:00pm - 12:30pm PST
Silverado East

OS in the Public Sector & Society

Content Experience Level Intermediate

2:00pm PST

OSI Open Source AI Definition Update and Q&A - Stefano Maffulli, Open Source Initiative (OSI)

Wednesday November 20, 2024 2:00pm - 2:30pm PST

Vintner's Court

Speakers

Stefano Maffulli

Executive Director, Open Source Initiative

Stefano is an experienced leader of open source organizations, from non-profits advocacy groups and trade organizations to business ventures and community projects across countries. With a proven track record in community building, he’s also an active contributor to open source... Read More →

Wednesday November 20, 2024 2:00pm - 2:30pm PST
Vintner's Court

Legal Track Sessions

Content Experience Level Intermediate

2:00pm PST

The Shape of the New OSPO - Nithya Ruff, Amazon

Wednesday November 20, 2024 2:00pm - 2:30pm PST

Sebastiani & Beringer

OSPOs have gone through a lot of changes lately with some shrinking, some becoming distributed and the rise of new industries and government building OSPOs. The challenges that OSPOs were created to solve have also changed. With new areas to address such as regulations, AI, Security and open source software issues becoming more well understood, OSPOs need to change their organization shape and focus. As someone who has led multiple OSPOs through the maturity cycles, I want to cover the new challenges and how OSPOs are evolving to address them. And how OSPOs can remain relevant and influential during these years of change. I will cover writing the new strategy document, the organization structure and working across the organization and outside the organization to accomplish the mission,

Speakers

Nithya Ruff

Head, Open Source Program Office, Amazon

Nithya is the Head of Amazon’s Open Source Program Office. Amazon’s customers value open source innovation and the cloud’s role in helping them adopt and run important open source services. She drives open source culture and coordination inside of Amazon and engagement with... Read More →

Wednesday November 20, 2024 2:00pm - 2:30pm PST
Sebastiani & Beringer

OS Program Office (OSPO) / TODO Group

Content Experience Level Intermediate

2:45pm PST

"Open" AI Perspectives - Richard Fontana, Red Hat & Luis Villa, Tidelift

Wednesday November 20, 2024 2:45pm - 3:15pm PST

Vintner's Court

Speakers

Richard Fontana

Senior Commercial Counsel, Red Hat

Luis Villa

Co-founder and General Counsel, Tidelift

Wednesday November 20, 2024 2:45pm - 3:15pm PST
Vintner's Court

Legal Track Sessions

Content Experience Level Intermediate

2:45pm PST

Ant Group's 3+ Year's of OSPO Journey to the Global Stage - Richard Sikang Bian & Nadia Jiang, Ant Group

Wednesday November 20, 2024 2:45pm - 3:15pm PST

Sebastiani & Beringer

Ant Group (fintech company with 25K employees) founded Open Source Program Office (OSPO) in 2021. It has been a roller coaster journey to nurture it as the company features primarily a B2B2C business model which doesn't rely heavily on Open Source successes. Building long-lasting open source engagement can be a really challenging, yet rewarding journey. It all began as a technical strategic initiative with 1 individual working on it part time. After 3+ years, the company now has a dedicated OSPO team of 6+ people, a full fledged Open Source Technical Committee, featuring Open Source as a long term Technical Strategy, and starting this year began the global outreach work very seriously in 2024. In this duo-speaker session, we'll share our learnings and reflections of building OSPO in a highly dynamic environment with constant challenges from leadership, peers, and difficulties for building sustainable ecosystem. It aims to provide valuable insights for foundation members, ecosystem players and project leads to work with large corporations, even more useful if there are cultural boundaries to break through.

Speakers

Nadia Jiang

Head of Open Source Growth and Internationalization, Ant Group

Nadia Jiang is an entrepreneur, open-source enthusiast, and DevRel expert. Currently serving as the COO of SegmentFault, China's largest developer Q&A community, and co-founder of Apache Answer. In addition to her professional accomplishments, Nadia is a dedicated contributor to open-source... Read More →

Richard Sikang Bian

Head of OSPO and Open Source Growth & Strategy, Ant Group

As an engineer by training and father to a toddler, Richard was ex-Square, ex-Microsoft who currently works on the Technical Strategy Initiatives team of Ant Group. Richard is also in charge of Ant Group's Open Source Program Office (OSPO) and enjoys being the evangelist of Open Source... Read More →

Wednesday November 20, 2024 2:45pm - 3:15pm PST
Sebastiani & Beringer

OS Program Office (OSPO) / TODO Group

Content Experience Level Intermediate

2:45pm PST

ToIP Ecosystem of Ecosystems Model for Decentralized Digital Trust - Judith Fleenor, Trust Over IP Foundation; Drummond Reed, Gen Digital; Wenjing Chu, Futurewei Technologies Inc.

Wednesday November 20, 2024 2:45pm - 3:15pm PST

SIlverado West

Trust Over IP Foundation, a JDF project under the Linux Foundation Decentralize Trust umbrella, has long been known for its “dual stack” that combines technical protocols with the governance models and artifacts required to create interoperable decentralized digital trust ecosystems. Starting with our ToIP Governance Architecture Specifications (2021) and ToIP Technology Architecture Specification (2022), this year we have published Implementers Drafts of our Trust Spanning Protocol (TSP) and Trust Registry Query Protocol (TQRP). This session will explain how this decentralized digital trust architecture is being implemented in an ecosystem of ecosystems model to produce Internet-scale solutions to urgent security, privacy, and data governance problems around the world such as content authenticity to protect against AI deep fakes.

Speakers

Wenjing Chu

Senior Director of Technology Strategy, Futurewei Technologies Inc.

Wenjing is a senior directory of technology strategy at Futurewei leading initiatives on trust in the future of computing. He is a Steering Committee member of the Trust over IP (ToIP) Foundation and co-Chairs the TSP and AI & Metaverse task forces. He is a Board Member of the OpenWallet... Read More →

Judith Fleenor

Director of Strategic Engagement, Trust Over IP

Judith Fleenor, Director of Strategic Engagement, Trust Over IP (ToIP.)The mission of ToIP is to simplify and standardize how trust is established over a digital network or using digital tools. Judith facilitates the collaborative community of international experts working together... Read More →

Drummond Reed

Director, Trust Services, Gen Digital

25 years working on Internet identity, security, privacy & trust Co-Editor, W3C Decentralized Identifiers (DID) Specification Steering Member, Trust Over IP (ToIP) Foundation Board Member, OpenWallet Foundation

Wednesday November 20, 2024 2:45pm - 3:15pm PST
SIlverado West

OS Project Highlights

Content Experience Level Intermediate

4:30pm PST

Generating SBOMs for All Critical Linux Foundation Projects - Gary O'Neall, Source Auditor Inc. & Jeff Shapiro, The Linux Foundation

Wednesday November 20, 2024 4:30pm - 5:00pm PST

Vintner's Court

We’ve been doing source level license scans for LF projects for a long time including generating SPDX formatted files, but what about SBOMs that can meet (and exceed) the government minimum specification? Here at the LF, we are now leveraging our existing scanning capabilities to generate SBOMs for these same critical open source projects.

In the LF spirit, we are using existing open source tools to scan project dependencies to produce an SBOM that meets the minimum spec. We are also producing dependency level license data to compliment our source level scans. In the near future we will be combining these to produce a grand unified SBOM that will meet a newly defined LF minimum specification for SBOMs.

We will talk about our process to generate these SBOMs, the challenges we faced, our future plans, and share more about how you can make use of these for the projects you care about most.

Speakers

Jeff Shapiro

Director of License Scanning, The Linux Foundation

Jeff Shapiro is the Director of License Scanning for The Linux Foundation. He has over 30 years of experience in the software industry, including 10 years in software auditing, open source scanning, and training developers in OSS license compliance.

Gary O'Neall

Founder and Principal Consultant, Source Auditor Inc.

Gary is a contributor to the Software Package Data Exchange® (SPDX™) - an open standard for communicating software bill of material information, including components, licenses, copyrights, and security references. Gary has contributed several open source tools. Gary O’Neall is... Read More →

Wednesday November 20, 2024 4:30pm - 5:00pm PST
Vintner's Court

Legal Track Sessions

Content Experience Level Intermediate

4:30pm PST

Panel Discussion: Open Source: What's Next? - Tony Wasserman, Software Methods & Tools; Chris Aniszczyk, CNCF; Nithya Ruff, Amazon; Stormy Peters, GitHub; Stephen Walli, Microsoft

Wednesday November 20, 2024 4:30pm - 5:00pm PST

Silverado East

This proposed session is a panel discussion covering recent developments and likely future directions for open source software, particularly as it applies to companies that are developing and/or using open source software in their products. The invited panelists all have extensive experience that cover the most significant issues facing open source today, including licensing, security, AI, and OSPOs.

Speakers

Tony Wasserman

Principal Consultant, Software Methods and Tools

Tony Wasserman has divided his career between academia and industry. He is currently Principal of Software Methods and Tools, and an Advisor in the UC Berkeley SkyDeck accelerator. He was Professor of Sfw Mgmt at CMU-Silicon Valley from 2005-23. Earlier, he was CEO of Interactive... Read More →

Stephen Walli

Principal Program Manager, Microsoft

I'm a principal program manager at Microsoft in the Azure Office of the CTO. I've worked with Docker, been a Distinguished Technologist at Hewlett-Packard, technical director at the Outercurve Foundation, founded a start-up, and been a writer and consultant. I've been around open... Read More →

Chris Aniszczyk

CTO, CNCF

Chris Aniszczyk is an open source technologist with a passion for building a better world through open collaboration. He's currently a CTO at the Linux Foundation focused on developer experience and running the Cloud Native Computing Foundation (CNCF). Furthermore, he's a Partner... Read More →

Nithya Ruff

Head, Open Source Program Office, Amazon

Stormy Peters

Open Source Expert, GitHub

Stormy Peters is VP of Communities at GitHub. She leads the teams responsible for enabling the online creators and open source communities on GitHub, including GitHub’s community product efforts, developer relations, education, and other strategic programs. Throughout her career... Read More →

Wednesday November 20, 2024 4:30pm - 5:00pm PST
Silverado East

OS in the Public Sector & Society

Content Experience Level Intermediate

10:00am PST

Enhancing Diversity and Inclusion in Open-Source Communities: Turning Strategy Into Impact - Regina Nkenchor, GNOME Foundation

Thursday November 21, 2024 10:00am - 10:30am PST

Silverado East

Research has shown that diversity is not just a buzzword but a critical factor that significantly impacts the effectiveness and success of open-source communities. Building an inclusive environment requires more than recognizing the importance of diversity; it demands concrete actions, tangible outcomes, and a genuine commitment to creating a welcoming space for all contributors. This talk draws from an in-depth study of the GNOME Project's diversity and inclusion strategies, examining the opportunities and challenges in fostering inclusiveness. By exploring these experiences, the aim of this talk is to provide actionable recommendations for improving diversity efforts. While some open-source projects have implemented strategies to create a diverse and inclusive environment, they often struggle to achieve impactful outcomes. How can we move beyond setting diversity and inclusion strategies to achieve measurable results? Are policies and initiatives enough to foster true inclusiveness? In this talk, I will share recommended strategies to foster contributions from diverse groups.

Speakers

Regina Nkenchor

Project Maintainer and Community Director of GNOME Africa, GNOME Foundation

Regina is the Project Maintainer and Community Director of GNOME Africa, as well as a member of the Diversity & Inclusion Community. She served two terms as Vice President of the Board of Directors at the GNOME Foundation, where she played a pivotal role in shaping the project's diversity... Read More →

Thursday November 21, 2024 10:00am - 10:30am PST
Silverado East

Global Collaboration & Diversity

Content Experience Level Intermediate

12:00pm PST

Panel Discussion: Bringing Open Source Governance to a World of Decentralized Trust - Diane Mueller, Bitergia; Christian Taylor, Intersect; & Hart Montgomery, The Linux Foundation

Thursday November 21, 2024 12:00pm - 12:30pm PST

SIlverado West

In the transformative era of Web3, which encompasses decentralized trust systems, blockchain, and distributed ledger technologies, the foundational principles of open source governance have never been more critical. This session aims to explore the intersection of open source governance with Web3, providing insights from leading experts. We will delve into the evolution of governance models, their applicability in decentralized contexts, and the resultant challenges and opportunities within blockchain ecosystems. As Web3 technologies continue to evolve, they challenge traditional governance models with their decentralized nature. This session will introduce the significance of adapting open source governance principles—transparency, accountability, and inclusivity—to blockchain and distributed ledger technologies. We will set the stage for a deep dive into how these principles can foster collaboration and innovation in decentralized environments. Attendees will gain a nuanced understanding of how to leverage open source governance to navigate the complexities of Web 3's decentralized systems, ensuring robust, equitable, and forward-looking frameworks for the future.

Speakers

Hart Montgomery

CTO, Hyperledger Foundation, Linux Foundation

Hart Montgomery serves as the CTO of Hyperledger Foundation and the ED of the Post-Quantum Cryptography Alliance. He has extensive experience in blockchain and cryptography, and previously worked in blockchain and cryptography research at Fujitsu Research. Hart received a Ph.D. in... Read More →

Diane Mueller

DIrector, Research and Advisory Services, Bitergia

Diane comes to Bitergia from Red Hat, where she was a Distinguished Community Architect and Director, Community Development for the OpenShift and Cloud Native ecosystems. She founded and lead the OpenShift Commons community and served as the co-chair of the OKD working group for the... Read More →

Christian Taylor

Head of Open Source Office, Intersect

Christian comes from a diversified delivery background across various industries, most recently leading efforts to integrate Cardano blockchain into the open-source space. He has been part of industry firsts, notably in VVIP aviation custom interiors at JBRND and managing workplace... Read More →

Thursday November 21, 2024 12:00pm - 12:30pm PST
SIlverado West

Security & Trust & Ethics in Open Source

Content Experience Level Intermediate

2:00pm PST

Facilitated Discussion: 2024 Open Source Funding Workshop: Tips and Tricks, and Best Practices - Improving Open Source Funding - Kevin Crosby, Stephanie Lincoln, & Jeffrey Luszcz, GitHub; Sam Boysel, Harvard Business School; Emma Irwin, Microsoft

Thursday November 21, 2024 2:00pm - 3:15pm PST

SIlverado West

This hands-on-workshop provides tools, templates, and shares best practices that organizations can take advantage of in order to get better measurement of their investments. We provide frameworks to enable your company and organization better measure their open source investment and impact. The 2024 Open Source Funding Survey shed light on the state of funding. In particular, establishing benchmarks and baselines for various types, sizes, and geographic funding organizations. In order to help organizations and companies better institutionalize their open source investments and funding programs. Potential action items: Tracking of open source code contributions - Leaving contribution fingerprints to help OSS management Collecting information on non-code contribution - How much and what form does your organization spend on OSS support? - What kinds of OSS projects does your organization support? Placing a value on non-code contributions - Determining what forms of non-code contributions your organization can and is willing to contribute. - Establishing measurements of value and tracking to understand investment - Establishing mechanisms to measure impact from the investment

Speakers

Stephanie Lincoln

GitHub

Jeffrey Luszcz

GitHub

Emma Irwin

Principal TPM, Microsoft

Emma Irwin is a Principal TPM with Microsoft's Open Source Program's Office. She has over 20 years' experience building with and for open source projects and their communities. Her experience spans multiple ‘open’ ecosystems including open data, education, science, access and... Read More →

Kevin Crosby

Open Source Funding, Sr. Dir., GitHub

Sam Boysel

Postdoctoral Fellow, Harvard Business School

Thursday November 21, 2024 2:00pm - 3:15pm PST
SIlverado West

OS Program Office (OSPO) / TODO Group

Content Experience Level Intermediate

2:45pm PST

Managing Healthy OSS Projects: Insights from Apache Spark, Delta Lake, MLflow, and Unity Catalog - Denny Lee, Databricks

Thursday November 21, 2024 2:45pm - 3:15pm PST

Sebastiani & Beringer

In the rapidly evolving world of open source software, effective project management is crucial for fostering innovation and collaboration. Drawing from my extensive experience with Apache Spark, Delta Lake, MLflow, and Unity Catalog, this session will explore best practices for building and maintaining vibrant open source communities. Attendees will gain insights into creating inclusive environments that attract and retain contributors, ensuring project sustainability and success.

Speakers

Denny Lee

Principal Developer Advocate, Databricks

Denny Lee is a long-time Apache Spark™ and MLflow contributor, Unity Catalog and Delta Lake maintainer, and a Sr. Staff Developer Advocate at Databricks. A hands-on distributed systems and data sciences engineer with extensive experience developing internet-scale data platforms... Read More →

Thursday November 21, 2024 2:45pm - 3:15pm PST
Sebastiani & Beringer

Building & Managing Healthy OS Projects

Content Experience Level Intermediate

3:45pm PST

Panel Discussion: OSS Viability: Reduce Risk with Metrics, Merges, and Money - Gary White, Verizon; Emma Irwin, Microsoft; Dawn Foster, CHAOSS; Georg Link, Bitergia

Thursday November 21, 2024 3:45pm - 4:15pm PST

Silverado East

Synopsys reports that 95% of codebases contain open source, and of those codebases, 75% of the code is open source. Viability; as a metrics model in the CHAOSS community; provides tools to inform strategic business decisions about open source use and investment. We evaluate open source at milestones such as when initial decision to use/or not use, or at points in time where investment through contribution ensures ongoing security and sustainability. Viability metrics can identify key moments when open source projects require focus and investment. Viability also provides measures for tracking impact of this focus and investment, both for OSS and for internal goals tracking. With metrics, we can make decisions about when it’s the right time to contribute back to communities that have too little support, and when to subsidize the work that our critical projects depend on. Join Dr. Dawn Foster (CHAOSS), Matt Germonprez (University of Nebraska at Omaha/CHAOSS), Emma Irwin (Microsoft), and Gary White (Verizon), as they discuss the approach, complications, failures, and successes of measuring viability and de-risking applications.

Speakers

Georg Link

Open Source Strategist and Director of Sales, Bitergia

Georg’s mission is to make open source more professional by using community metrics and analytics. Georg cofounded the CHAOSS Project to advance analytics and metrics for open source project health. Georg is an active contributor to several projects and has often presents on open... Read More →

Emma Irwin

Principal TPM, Microsoft

Dawn Foster

Director of Data Science, CHAOSS

Dr. Dawn Foster works as the Director of Data Science for CHAOSS where she is also a board member / maintainer. She is co-chair of CNCF TAG Contributor Strategy and an OpenUK board member. She has 20+ years of experience at companies like VMware and Intel with expertise in community... Read More →

Gary White

Principal Engineer, Verizon

Gary White Jr. is a technologist, dog dad, meme enthusiast, aspiring gearhead, and has-been musician. He specializes in enterprise companies on solving problems at scale. You can find Gary's previous experience on YouTube from Cloud Foundry Summit, KubeCon, and TremorCon. Most recently... Read More →

Thursday November 21, 2024 3:45pm - 4:15pm PST
Silverado East

Sustainability & Innovation in Open Source

Content Experience Level Intermediate