+ All Categories
Home > Technology > BKK16-200K2 Standards and Security

BKK16-200K2 Standards and Security

Date post: 14-Feb-2017
Category:

Technology
Upload: linaro
View: 428 times
Download: 0 times
Download Report this document
Share this document with a friend
36
Standards and Security Matthew Garrett Security Developer at CoreOS <[email protected]>
Transcript
Page 1: BKK16-200K2 Standards and Security

Standards and SecurityMatthew Garrett

Security Developer at CoreOS<[email protected]>

mailto:[email protected]
Page 2: BKK16-200K2 Standards and Security

Computers are everywhere

Page 3: BKK16-200K2 Standards and Security

Laptops

Page 4: BKK16-200K2 Standards and Security

Phones

Page 5: BKK16-200K2 Standards and Security

Cars

Page 6: BKK16-200K2 Standards and Security

Light bulbs

Page 7: BKK16-200K2 Standards and Security

We generate more data than ever before

Page 8: BKK16-200K2 Standards and Security

We place more trust in the systems around us

Page 9: BKK16-200K2 Standards and Security

Our duty is to ensure that that trust is well-placed

Page 10: BKK16-200K2 Standards and Security

We're failing

Page 11: BKK16-200K2 Standards and Security

(badly)

Page 12: BKK16-200K2 Standards and Security

A story about lightbulbs

Page 13: BKK16-200K2 Standards and Security

A story about Barbie

Page 14: BKK16-200K2 Standards and Security

The challenges are not new

Page 15: BKK16-200K2 Standards and Security

We are here because we value collaboration

Page 16: BKK16-200K2 Standards and Security

So why do we keep reinventing security?

Page 17: BKK16-200K2 Standards and Security

Innovative security usually isn't

Page 18: BKK16-200K2 Standards and Security

What should this look like?

Page 19: BKK16-200K2 Standards and Security

Define best practices

Page 20: BKK16-200K2 Standards and Security

Write a reference implementation

Page 21: BKK16-200K2 Standards and Security

Provide guarantees to higher layers

Page 22: BKK16-200K2 Standards and Security

Industry-wide organisation

Page 23: BKK16-200K2 Standards and Security

Meaningful public review

Page 24: BKK16-200K2 Standards and Security

UEFI

Page 25: BKK16-200K2 Standards and Security

TCG

Page 26: BKK16-200K2 Standards and Security

Do not differentiate on fundamental security

Page 27: BKK16-200K2 Standards and Security

(but what about the children?)

Page 28: BKK16-200K2 Standards and Security

This is a rapidly developing industry

Page 29: BKK16-200K2 Standards and Security

Product iteration is rapid

Page 30: BKK16-200K2 Standards and Security

Time on market is short

Page 31: BKK16-200K2 Standards and Security

Lifetime of devices doesn't match support cycles

Page 32: BKK16-200K2 Standards and Security

Immutable security is bad security

Page 33: BKK16-200K2 Standards and Security

What should our legacy be?

Page 34: BKK16-200K2 Standards and Security

The era of ubiquitous information?

Page 35: BKK16-200K2 Standards and Security

The era of ubiquitous insecurity?

Page 36: BKK16-200K2 Standards and Security

Let's make some good choices


Recommended
BKK16-409 VOSY Switch Port to ARMv8 Platforms and ODP Integration

BKK16-409 VOSY Switch Port to ARMv8 Platforms and ODP Integration

Technology

BKK16-504 Running Linux in EL2 Virtualization

BKK16-504 Running Linux in EL2 Virtualization

Technology

BKK16-400A LuvOS and ACPI Compliance Testing

BKK16-400A LuvOS and ACPI Compliance Testing

Technology

Information Technology Security Standards and Protocols · Information Technology Security Standards and Protocols ... 2.1 General Network ... Information Technology Security Standards

Information Technology Security Standards and Protocols · Information Technology Security Standards and Protocols ... 2.1 General Network ... Information Technology Security Standards

Documents

BKK16-TR08 How to generate power models for EAS and IPA

BKK16-TR08 How to generate power models for EAS and IPA

Technology

Devicetree Specification - eLinux€¦ · Devicetree Specification Kanta Vekaria and Grant Likely BKK16-411 March 2016 Linaro Connect BKK16. Introduction Devicetree Well established

Devicetree Specification - eLinux€¦ · Devicetree Specification Kanta Vekaria and Grant Likely BKK16-411 March 2016 Linaro Connect BKK16. Introduction Devicetree Well established

Documents

BKK16-213 Where's the Hardware?

BKK16-213 Where's the Hardware?

Technology

BKK16-400K2 The Networked Society and 5G

BKK16-400K2 The Networked Society and 5G

Technology

Information Technology Security Standards and Protocolsdocuments.coastline.edu/Academics/cae2y/IT Security Standards and... · 1 Information Technology Security Standards and Protocols

Information Technology Security Standards and Protocolsdocuments.coastline.edu/Academics/cae2y/IT Security Standards and... · 1 Information Technology Security Standards and Protocols

Documents

BKK16-311 EAS Upstream Stategy

BKK16-311 EAS Upstream Stategy

Technology

BKK16-310 The HiKey AOSP collaborative experience

BKK16-310 The HiKey AOSP collaborative experience

Technology

BKK16-315 Graphics Stack Update

BKK16-315 Graphics Stack Update

Technology

BKK16-208 EAS

BKK16-208 EAS

Technology

Data Security Standards

Data Security Standards

Documents

BKK16-106 ODP Project Update

BKK16-106 ODP Project Update

Technology

BKK16-206 AOSP RAM reduction project retrospective

BKK16-206 AOSP RAM reduction project retrospective

Technology

BKK16-103 OpenCSD - Open for Business!

BKK16-103 OpenCSD - Open for Business!

Technology

BKK16-212: What's broken on ARM64?

BKK16-212: What's broken on ARM64?

Technology