Open Source Summit North America 2025: Full Schedule

June 23 - 25, 2025
Denver, Colorado
View More Details & Registration
Note: The schedule is subject to change.

The Sched app allows you to build your schedule but is not a substitute for your event registration. You must be registered for Open Source Summit North America 2025 to participate in the sessions. If you have not registered but would like to join us, please go to the event registration page to purchase a registration.

This schedule is automatically displayed in Mountain Daylight Time (UTC/GMT -6). To see the schedule in your preferred timezone, please select from the drop-down menu to the right, above "Filter by Date."

IMPORTANT NOTE: Timing of sessions and room locations are subject to change.

12:00pm MDT

Kid's Day (Pre-registration Required)

Sunday June 22, 2025 12:00pm - 5:00pm MDT

Colorado Convention Center

The Linux Foundation is pleased to present our annual Kid’s Day at Open Source Summit North America 2025!
This event is targeted toward absolute beginners who have a creative imagination. The kids will start by pitching an idea for an app/game. Then with the help of our staff and industry mentors, we’ll help them create projects of their own design to code something amazing! Absolutely no CS experience is required for your kid to attend.

Who can attend?
This workshop is appropriate for children ages 9 – 18 and is open to all children, including those of OSS attendees.

Cost?
Registration is complimentary, however, space is limited.

Needs?
Bring a great attitude and an open mind! Laptops will be provided for each participant to use during the event, however, feel free to bring your own if you would like.
Light refreshments will also be provided.

Register

Sunday June 22, 2025 12:00pm - 5:00pm MDT
Colorado Convention Center 700 14th St, Denver, CO 80202

Special Events / Exhibits / Breaks

2:00pm MDT

Pre-Registration & Badge Pick-Up

Sunday June 22, 2025 2:00pm - 6:00pm MDT

Bluebird Ballroom Foyer (Level 1 - Terrace Level)

Sunday June 22, 2025 2:00pm - 6:00pm MDT
Bluebird Ballroom Foyer (Level 1 - Terrace Level)

Special Events / Exhibits / Breaks

7:30am MDT

Continental Breakfast

Monday June 23, 2025 7:30am - 9:00am MDT

Bluebird Ballroom Foyer (Level 1 - Terrace Level)

Monday June 23, 2025 7:30am - 9:00am MDT
Bluebird Ballroom Foyer (Level 1 - Terrace Level)

Special Events / Exhibits / Breaks

7:30am MDT

Zen Zone

Monday June 23, 2025 7:30am - 5:00pm MDT

712 Meeting Room (Level 3 - Street Level)

All attendees may feel free to use the Zen Zone as needed. It is a physical space where attendees can go if for any reason they can’t interact with other attendees at that time where conversation and interaction are not allowed.

Monday June 23, 2025 7:30am - 5:00pm MDT
712 Meeting Room (Level 3 - Street Level)

Special Events / Exhibits / Breaks

7:30am MDT

Hacker Space

Monday June 23, 2025 7:30am - 5:10pm MDT

Bluebird Ballroom Foyer - Space behind the escalators

Discover a space, where you can collaborate, create, and explore new ideas with fellow attendees. Whether you're here to learn or build, our space is open for everyone to enjoy throughout the conference!

Monday June 23, 2025 7:30am - 5:10pm MDT
Bluebird Ballroom Foyer - Space behind the escalators

Special Events / Exhibits / Breaks

7:30am MDT

Coat & Bag Check

Monday June 23, 2025 7:30am - 6:00pm MDT

607 Meeting Room (Level 3 - Street Level)

Monday June 23, 2025 7:30am - 6:00pm MDT
607 Meeting Room (Level 3 - Street Level)

Special Events / Exhibits / Breaks

7:30am MDT

Registration & Badge Pick-Up

Monday June 23, 2025 7:30am - 6:00pm MDT

Bluebird Ballroom Foyer (Level 1 - Terrace Level)

Monday June 23, 2025 7:30am - 6:00pm MDT
Bluebird Ballroom Foyer (Level 1 - Terrace Level)

Special Events / Exhibits / Breaks

9:00am MDT

Keynotes to be Announced

Monday June 23, 2025 9:00am - 10:45am MDT

Bluebird Ballroom 1C (Level 1 - Terrace Level)

Monday June 23, 2025 9:00am - 10:45am MDT
Bluebird Ballroom 1C (Level 1 - Terrace Level)

Keynote Sessions

10:45am MDT

Coffee Break

Monday June 23, 2025 10:45am - 11:20am MDT

Solutions Showcase - Bluebird Ballroom 1AB

Monday June 23, 2025 10:45am - 11:20am MDT
Solutions Showcase - Bluebird Ballroom 1AB

Special Events / Exhibits / Breaks

10:45am MDT

Solutions Showcase

Monday June 23, 2025 10:45am - 5:10pm MDT

Solutions Showcase - Bluebird Ballroom 1AB

Monday June 23, 2025 10:45am - 5:10pm MDT
Solutions Showcase - Bluebird Ballroom 1AB

Special Events / Exhibits / Breaks

11:20am MDT

State of the CD Foundation - Dadisi Sanyika, CDF Governing Board Chair, Apple

Monday June 23, 2025 11:20am - 12:00pm MDT

Bluebird Ballroom 3B

Speakers

Dadisi Sanyika

CDF Board Chair, Spinnaker TOC, Engineering Manage, Apple, Inc.

I am Board Chair for the Continuous Delivery Foundation (Linux sub-foundation) and lead a team of engineers at Apple dedicated to improving the Continuous Deployment experience for teams and the community. Our contributions are focused on extending scalability and multi-tenant capabilities... Read More →

Monday June 23, 2025 11:20am - 12:00pm MDT
Bluebird Ballroom 3B

cdCon

11:20am MDT

Building Trust in ML: Mapping the Model Lifecycle for ML Integrity and Transparency - Marcela Melara, Intel Labs

Monday June 23, 2025 11:20am - 12:00pm MDT

Bluebird Ballroom 2F

Open machine learning (ML) models and datasets are rapidly becoming central to building AI applications. While this trend accelerates innovation and democratizes AI, it exposes applications to security risks like data poisoning and supply chain attacks. Threats like malicious backdoors hidden in pre-trained ML models hosted on major hubs like Hugging Face emphasize the wide reach compromises can have. So, how do we build trust in the ML lifecycle?
This talk presents Atlas, a framework that combines open specifications for data and software supply chain provenance like Coalition for Content Provenance and Authenticity (C2PA) and Supply-chain Levels for Software Artifacts (SLSA) with the integrity features of transparency logs and trusted hardware to run attestable ML pipelines. First, we motivate the need to safeguard all layers of the ML lifecycle. We describe and demonstrate how Atlas’s three core mechanisms enable verification: (1) cryptographic artifact authentication, (2) hardware-based attestation of ML systems, and (3) provenance tracking across ML pipelines. Our Atlas demo integrates several open-source tools to build an end-to-end ML lifecycle transparency system.

Speakers

Marcela Melara

Research Scientist, Intel Labs

Marcela Melara is a research scientist in the Security and Privacy Research group at Intel Labs. Her current work focuses on developing solutions for high-integrity software and AI supply chains. She leads a number of internal, academic and open-source projects on supply chain and... Read More →

Monday June 23, 2025 11:20am - 12:00pm MDT
Bluebird Ballroom 2F

Cloud + Containers

Audience Experience Level Intermediate

11:20am MDT

The Power of Consolidation: A Unified Stack for Business Intelligence, Security, and Observability - Josh Lee, Altinity, Inc. & Mya Jaye, C8 Labs

Monday June 23, 2025 11:20am - 12:00pm MDT

Bluebird Ballroom 2G

Imagine you’re responding to a production incident, and you’re trying to answer simple questions about it. How many systems do you need to consult when assessing the impact of events at your company? Do you manage different technology stacks for observability, security, and business intelligence?

What if we told you, you could create a unified stack capable of serving all stakeholders simultaneously? In this talk, Mya and Josh explore how open source technologies like ClickHouse, OpenTelemetry, and Grafana enable complex business use cases using modern tooling and practices.

Regardless of your function, you will leave with a deeper understanding of how consolidating these concerns into a unified stack reduces technical complexity and provides a common language for everyone to use - from engineers building new features and product managers evaluating their success, to operators keeping the lights on and C suite’s birds-eye view of the company.

Whether you’re working with a data lake, or more of a data pond, we offer practical architectures and solutions to streamline your operations and bring your stakeholders together, all while using fewer resources.

Speakers

Mya Jaye

Founder, C8 Labs

A brilliant, talented, self-taught, ambivert who loves attending and speaking at conferences. I love tinkering with small board computers like raspberry pis.☕ If you see me around, don't hesitate to come say hi!🏒 Hockey player since I was 7💻 Programming since I was 14... Read More →

Josh Lee

Open Source Developer Advocate, Altinity, Inc.

Whether it’s operators or observability, agile or accessibility, my expertise shines because I’m passionate about all of it. I’ve been building software for more than a decade and I love sharing experiences via public speaking. I’m currently a Developer Advocate for Altinity... Read More →

Monday June 23, 2025 11:20am - 12:00pm MDT
Bluebird Ballroom 2G

Cloud + Containers

Audience Experience Level Intermediate

11:20am MDT

U-Boot's New Standard Boot and What's Next - Simon Glass, Canonical

Monday June 23, 2025 11:20am - 12:00pm MDT

Bluebird Ballroom 2A

U-Boot provides a fairly new feature called Standard Boot, which replaces the scripts and masses of environment variables previously used. Standard boot can boot your device automatically and quickly.

This session dives into how embedded devices boot, how Standard Boot works under the hood, the benefits of adopting Standard Boot and how to write your own bootmeth and bootdev drivers. By way of example, some existing drivers are covered, including UEFI, extlinux, Android and ChromeOS.

It also provides a general update on U-Boot and what the future might hold.

Speakers

Simon Glass

Fellow Software Engineer, Canonical

Simon Glass has worked in embedded systems for many years, at ARM, Bluewater Systems (which he founded) and Google. In ChromeOS, Simon is responsible for driving adoption of Open Source firmware components in the industry ecosystem. He is a primary contributor to U-Boot and custodian... Read More →

Monday June 23, 2025 11:20am - 12:00pm MDT
Bluebird Ballroom 2A

Embedded Linux Conference

Audience Experience Level Any

11:20am MDT

AI for Kernel Engineers - Sasha Levin, NVIDIA

Monday June 23, 2025 11:20am - 12:00pm MDT

Bluebird Ballroom 2D

Beyond the hype, AI is already impacting Linux kernel engineering workflows. This talk presents concrete examples from real-world applications in Linux kernel LTS maintenance and CVE assignment processes. We'll examine where AI tools have meaningfully improved development processes and where they fall short.
Drawing from hands-on experience, we'll demonstrate how AI assists in analyzing patches for LTS kernel trees and streamlines vulnerability classification workflows. We'll share specific metrics showing both successes and limitations, focusing on practical applications rather than theoretical possibilities. We'll also explore emerging opportunities where AI could enhance kernel development while maintaining high engineering standards.
This technical session provides kernel developers, maintainers, and engineering leaders with actionable insights for integrating AI tools into their workflows while preserving the rigor of kernel development practices.

Speakers

Sasha Levin

Distinguished Software Engineer, NVIDIA

Sasha helps maintain the Linux Kernel Stable and LTS trees. He is currently employed by NVIDIA where he helps make Linux better. Previously, Sasha was employed by Google, Microsoft, and the Ksplice team in Oracle.

Monday June 23, 2025 11:20am - 12:00pm MDT
Bluebird Ballroom 2D

Linux

Audience Experience Level Beginner

11:20am MDT

EdgeLake-FL: An Automated Federated Learning Platform for the Edge - Roy Shadmon & Moshe Shadmon, AnyLog

Monday June 23, 2025 11:20am - 12:00pm MDT

Bluebird Ballroom 3E

Edge AI today relies on centralizing data from edge devices to the cloud, but this is impractical due to costs and privacy constraints. Federated Learning (FL) is a viable alternative: edge nodes collaboratively train a ML model without transferring or exposing proprietary data. Instead, only model weights are shared, allowing each entity to develop a model that outperforms what it could train independently. Despite its potential, FL is largely academic due to the complexity of integrating expertise across the technology stack. Additionally, decentralized data can be heterogeneous, requiring non-generalizable, application-specific solutions. EdgeLake-FL is a hardware-agnostic framework leveraging EdgeLake, an LF Edge project, to automate the continuous learning FL workflow. With EdgeLake as the data management layer, decentralized data appears centralized and data heterogeneity is resolved. Using EdgeLake-FL, an ML engineer publishes a training application, and Edge nodes with relevant data autonomously train, share, and aggregate models. Each node can then leverage the aggregated models for inference directly at the Edge. In this talk, I will demo EdgeLake-FL in a real use case.

Speakers

Roy Shadmon

System Architect at AnyLog & EdgeLake TSC Member, AnyLog

Roy Shadmon is an EdgeLake contributor and a System Architect at AnyLog where he leads blockchain and ML initiatives. He is also a Ph.D. candidate at UC Santa Cruz, and his research focus is at the intersection of Bayesian statistics, distributed systems, and Byzantine fault tole... Read More →

Moshe Shadmon

CEO, AnyLog

Moshe Shadmon, CEO at Anylog. AnyLog’s Virtual Edge Data Network is a Plug & Play software, deployed at the edge, allowing real-time insight without centralizing the data. AnyLog enables deployment of applications and AI at the distributed edge. Prior to AnyLog, Moshe was the CEO... Read More →

Monday June 23, 2025 11:20am - 12:00pm MDT
Bluebird Ballroom 3E

Open AI + Data

Audience Experience Level Any

11:20am MDT

Leveraging the OPEA Platform and GraphRAG Architectures To Drive Cloud-Native AI Adoption - Stephen Chin, Neo4j & Rachel Roumeliotis, Intel

Monday June 23, 2025 11:20am - 12:00pm MDT

Bluebird Ballroom 2C

In the era of cloud-native technologies, businesses are increasingly looking to integrate advanced AI capabilities into their workflows. This session explores how the Open Platform for Enterprise AI (OPEA) offers a transformative, open-source framework designed to accelerate the adoption of Generative AI (GenAI) across industries. Attendees will learn about the key benefits of adopting an open-source GenAI platform, including flexibility, community-driven improvements, and cost efficiency, as well as the advantages of deploying AI models in a cloud-native environment. We will also dive deep into the emerging GraphRAG (Graph-based Retrieval-Augmented Generation) architecture, demonstrating how it enhances the accuracy and explainability of AI-driven responses. Join us for this session to explore how the open-source OPEA platform and GraphRAG architectures are poised to redefine enterprise AI and to drive smarter, more reliable cloud-native AI applications.

Speakers

Stephen Chin

VP of Developer Relations, Neo4j

Stephen Chin is VP of Developer Relations at Neo4j, member of the Open AI Alliance, and author of several titles with O'Reilly, Apress, and McGraw Hill. He has keynoted numerous conferences around the world including AI DevSummit, Devoxx, DevNexus, JNation, Shift, JavaOne, Joker... Read More →

Rachel Roumeliotis

Director, Open Source Strategy, Intel

Rachel Roumeliotis, Director, Open Source Strategy, Intel is led by the belief that open source is key to growth and innovation, Rachel is focused on partnering with fellow Intel colleagues to incorporate these tenets into its larger business strategy. She is also working with other... Read More →

Monday June 23, 2025 11:20am - 12:00pm MDT
Bluebird Ballroom 2C

Open AI + Data

Audience Experience Level Intermediate

11:20am MDT

Effortlessly Build, Run, Secure, and Manage Traffic for a Generative AI Application From Scratch - Lin Sun, solo.io

Monday June 23, 2025 11:20am - 12:00pm MDT

Bluebird Ballroom 3A

Generative AI (GenAI) is ushering in a new era of human innovation, but building your own GenAI application can feel overwhelming. Which Large Language Model (LLM) should you choose? Should you incorporate Retrieval-Augmented Generation (RAG)? How can you ensure your application runs securely and efficiently on Kubernetes, with robust observability and debugging? And how do you manage API calls and control costs for external LLMs?

This demo-driven session will guide you step by step through building, running, securing, and managing traffic for a GenAI application from scratch. Starting with a native setup, we’ll then transition to Kubernetes, simplifying the entire process. You’ll learn how to enhance your application with domain-specific knowledge using RAG and leverage cloud-native tools like Kubernetes, Prometheus, Kiali, Istio, and the Kubernetes Gateway API to run your application securely and effectively.

Speakers

Lin Sun

Head of Open-Source, solo.io

Lin is the Head of Open Source at Solo.io, and a CNCF TOC member and ambassador. She has worked on the Istio service mesh since the beginning of the project in 2017 and serves on the Istio Steering Committee and Technical Oversight Committee. Previously, she was a Senior Technical... Read More →

Monday June 23, 2025 11:20am - 12:00pm MDT
Bluebird Ballroom 3A

Open Source 101

Audience Experience Level Beginner

11:20am MDT

Who Will Maintain the Future? Tackling the Graying of Open Source Software - Abigail Cabunoc Mayes, GitHub

Monday June 23, 2025 11:20am - 12:00pm MDT

Bluebird Ballroom 3C

Open source software powers our world, but many of the maintainers keeping it alive are overburdened and aging out. Balancing technical, community, and financial responsibilities has become overwhelming, leading to burnout and project stagnation. This “graying” of open source raises urgent questions: Who will maintain the future?

Drawing from my experience supporting hundreds of maintainers through programs like GitHub Maintainer Programs, Mozilla Open Leaders, and SustainOSS, I’ll share real-world examples of the challenges maintainers face and the systemic barriers preventing new leadership. While emerging tools help reduce workload, sustainable projects need human stewardship. We'll explore practical solutions: lowering barriers to maintainership, strengthening leadership pipelines, and ensuring projects remain healthy for generations.

Maintaining open source isn’t just about code—it’s about people. Whether you’re a contributor, project lead, or company investing in open source, you’ll leave with concrete actions to help sustain the ecosystem. Let’s build a future where maintainers are supported, projects thrive, and open source continues to grow.

Speakers

Abigail Cabunoc Mayes

Open Source Programs, GitHub

Abigail Cabunoc Mayes (@abbycabs) leads GitHub’s open source maintainer programs where she works to help maintainers – and the open source ecosystem – thrive. Before joining GitHub, Abby founded and led Mozilla Open Leaders, an open source mentorship program that worked with... Read More →

Monday June 23, 2025 11:20am - 12:00pm MDT
Bluebird Ballroom 3C

Open Source Leadership

Audience Experience Level Any

11:20am MDT

Open Source at the Department of Homeland Security - Jordan Kasper, DHS/OCIO

Monday June 23, 2025 11:20am - 12:00pm MDT

Bluebird Ballroom 3F

The Department of Homeland Security builds and maintains thousands software systems. It would be difficult to find a system that doesn't use open source software. In fact, the U.S. government is likely the single largest consumer of OSS in the world and considering the criticality of the mission, the security of those systems is paramount. But until recently, there was no clear guidance on how we should select, consume, contribute to, and publish open source software. Recently the office of the DHS CIO published such guidance, providing much needed structure. This session will cover how DHS intends to secure its own systems by employing tools and processes to vet open source projects, ingest that software securely, and support those projects with substantive contributions.

Attendees from government entities, contractors, and members of the community should attend to learn how one agency is tackling the supply chain risks inherent in open source while still capturing the benefits that it has to offer. They'll come away with an understanding of how this might impact their work, and how by working together we can build a better open source ecosystem for everyone.

Speakers

Jordan Kasper

Sr Technical Advisor

Jordan Kasper is a software engineer, conference speaker, and open source zealot. He spent much of his career building web applications for organizations of all sizes. In 2017, he joined the U.S. Digital Service to help make tech better for all Americans, working in multiple federal... Read More →

Monday June 23, 2025 11:20am - 12:00pm MDT
Bluebird Ballroom 3F

OpenGovCon

Audience Experience Level Beginner

11:20am MDT

BoF: Collaboration with Universities and Enterprises OSPO - Sayeed Choudhury, Carnegie Mellon University; Stephanie Liegg, UC Santa Cruz; Amazon; Natali Vlatko, Cisco

Monday June 23, 2025 11:20am - 12:00pm MDT

Bluebird Ballroom 3G

Join the TODO Group and CURIOSS community for an interactive session where attendees can share use cases on how their organizations are investing in academic research. Explore practices for transferring knowledge from academia and the research community.

We welcome open source managers, OSPO leaders, and other stakeholders from organizations and universities engaged in research or interested to learn more.

Speakers

Nithya Ruff

Director, Amazon OSPO, Amazon

Nithya is the Head of Amazon’s Open Source Program Office. Amazon’s customers value open source innovation and the cloud’s role in helping them adopt and run important open source services. She drives open source culture and coordination inside of Amazon and engagement with... Read More →

Stephanie Lieggi

Executive Director, CROSS/OSPO, UC Santa Cruz

Stephanie Lieggi is executive director for the Center for Research in Open Source Software (CROSS) and the UC Santa Cruz Open Source Program Office (OSPO). In her current roles she supports the work of academic-based open source projects and enables a sustainable contributor base... Read More →

Natali Vlatko

Open Source Lead Architect, Cisco

Natali Vlatko (she/her) is an Open Source Lead Architect at Cisco, specializing in open software, policy, and governance. She is a SIG Docs Co-Chair for Kubernetes and a member of the TODO Group Steering Committee. She plays on the fun computer in her spare time. Her academic background... Read More →

Sayeed Choudhury

Associate Dean for Digital Infrastructure; Director of the Open Source Programs Office; Executive Director of Open Forum for AI, Carnegie Mellon University

Associate Dean for Digital Infrastructure, Director of Open Source Programs Office, and Executive Director of the Open Forum for AI.

Monday June 23, 2025 11:20am - 12:00pm MDT
Bluebird Ballroom 3G

OSPOCon

11:20am MDT

D(ocs)&D(evelopment): Finding the Perfect Party for Your Documentation Campaign - Heds Simons & Kim Nylander, Grafana Labs

Monday June 23, 2025 11:20am - 12:00pm MDT

Bluebird Ballroom 3D

It’s product release time. The code is stable. You’ve got everything EXCEPT the docs.

How do you create meaningful, prioritized content in a short time frame?

Your writer needs to collaborate with a Subject Matter Expert (SME) who understands the technical and user content. At Grafana, this synergy happens between Field Engineers (FE) and Technical Writers (TW). FEs are a three-in-one SME with the understanding of a developer, sales engineer, and technical support.

How does this collaboration benefit both writers and SMEs?
* TW has a single SME for user needs and cross-product technical expertise.
* FEs get accurate, up-to-date content that helps them and Grafana’s OSS community members get up to speed on products.
* OSS Community members get accurate, up-to-date docs.

In this session, you’ll learn how to:
* Identify the right SME
* Establish a collaborative workflow
* Prioritize work that best addresses the user’s needs

We’ll detail how this collaboration started through a shared love of RPGs, the traps we encountered and lessons learnt, and how a bi-weekly session between two colleagues became the foundation for a model now used across Grafana’s telemetry products.

Speakers

Hedley Simons

Senior Principal Field Engineer, Grafana Labs

Heds is a Senior Principal Field Engineer at Grafana Labs, where he builds and maintains internal and external environments, designs advanced workshops, provides input on product use-cases and acts as a SME.Heds comes from a software engineering background, and has written code for... Read More →

Kim Nylander

Principal Technical Writer, Grafana Labs

Professional writer who specializes in explaining complicated concepts in plain English at a level appropriate for the target audience. Over 15 years experience of writing SaaS product content, IT procedures, API documentation, tutorials, online help, FAQs, and specifications... Read More →

Monday June 23, 2025 11:20am - 12:00pm MDT
Bluebird Ballroom 3D

Technical Documentation

Audience Experience Level Any

11:20am MDT

Unconference

Monday June 23, 2025 11:20am - 12:00pm MDT

Bluebird Ballroom 2H

Do you have a topic you’d like to discuss with fellow attendees? A project or idea you want to share and get feedback on? Something you'd like to teach others? Sign up to lead an Unconference session!
Sessions are informal, attendee-driven, and a great way to connect with others. There will be no AV—only a flip chart will be provided.
You can sign up in advance using this form by June 13, or onsite at the event in the Solutions Showcase - Bluebird Ballroom 1AB. Once your time slot is confirmed, it will be added to the official conference schedule so other attendees can join your session onsite.
Click here to view the Unconference schedule. Be sure to check out the topics being discussed and join us onsite for great conversations!

Monday June 23, 2025 11:20am - 12:00pm MDT
Bluebird Ballroom 2H

Unconference Sessions

11:20am MDT

Why Rust and Zephyr Are a Good Fit - David Brown, Linaro

Monday June 23, 2025 11:20am - 12:00pm MDT

Bluebird Ballroom 2B

When seeking to use Rust for embedded development, there are several options, including bare-metal, a few rust-specific rtos implementations, and several existing RTOSes. This talk discusses why Zephyr is a good fit for an embedded Rust, and especially how we are able to leverage some of Zephyr's strengths, including a rich and diverse set of supported targets, and some of Zephyr's features, such as the work queue mechanism, and how it fits well with Rust's async system.

Speakers

David Brown

Senior Engineer, Linaro

David Brown is part of Linaro, and has worked on the Linux kernel, with a focus on security for a number of years. Recently, he has been focusing on security as it relates to IoT and embedded devices, including focusing on secure booting, and secure network communications. He is currently... Read More →

Monday June 23, 2025 11:20am - 12:00pm MDT
Bluebird Ballroom 2B

Zephyr

Audience Experience Level Beginner

12:00pm MDT

Better Together Lunch

Monday June 23, 2025 12:00pm - 1:30pm MDT

Go Gourmet Cafe (Level 3 - Street Level)

About the Better Together Lunch
The Better Together Lunch offers an opportunity for all event participants from marginalized communities (including race, gender, sexual orientation, and disability), along with their allies, to come together and build meaningful connections that extend beyond the event. We hope that this gathering will help foster greater representation and inclusion both at the event and in the open source community over time.

No cost and pre-registration is not required to attend. We do our best to accommodate everyone interested in joining, but please note that participation is on a first-come, first-served basis.

Who Can Attend?
Any event participant from a marginalized community (including race, gender, sexual orientation, and disability) and their ally guests.

Is This Event Open to Allies?
Attendees of the Better Together Lunch are welcome to invite one (1) ally to this event. We encourage allies to support inclusion in tech by also participating in the Equity, Inclusion, and Accessibility track and by engaging with attendees from underrepresented backgrounds throughout the event.

If you are interested in learning more about how the Linux Foundation promotes inclusion and equal opportunities, visit our Inclusion & Accessibility page.

Monday June 23, 2025 12:00pm - 1:30pm MDT
Go Gourmet Cafe (Level 3 - Street Level)

Special Events / Exhibits / Breaks

12:00pm MDT

Lunch (Provided Onsite for All Attendees)

Monday June 23, 2025 12:00pm - 1:30pm MDT

Solutions Showcase - Bluebird Ballroom 1AB

Monday June 23, 2025 12:00pm - 1:30pm MDT
Solutions Showcase - Bluebird Ballroom 1AB

Special Events / Exhibits / Breaks

1:30pm MDT

Implementing Zero Trust Security in Jenkins Pipelines With Open Source Tools - Steve Taylor, DeployHub, Inc

Monday June 23, 2025 1:30pm - 1:50pm MDT

Bluebird Ballroom 3B

As cyber threats become increasingly sophisticated, the traditional perimeter-based security model no longer suffices. Zero Trust Security offers a modern framework that assumes no entity—user, device, or application—can be trusted by default, emphasizing "never trust, always verify." But how can this framework be applied effectively within automated CI/CD pipelines like Jenkins?

In this talk, we’ll provide a practical introduction to Zero Trust Security, exploring its key principles and the critical role it plays in modern software delivery. Attendees will learn how to integrate Zero Trust practices into Jenkins pipelines using powerful open-source tools. From secrets management to policy enforcement and continuous vulnerability management, this session will provide actionable steps to secure the entire software development lifecycle.

Speakers

Steve Taylor

CTO, DeployHub

Steve Taylor is a visionary and leader in open-source security, DevOps, and securing the software supply chain. Long before “CI/CD” became a buzzword, Steve was designing cutting-edge pipelines for Fortune 1000 companies, redefining how software is built and deployed. His innovative... Read More →

Monday June 23, 2025 1:30pm - 1:50pm MDT
Bluebird Ballroom 3B

cdCon

Audience Experience Level Beginner

1:30pm MDT

Gopher Meets Crab: A Rust Journey in Cloud Native - Phil Estes, AWS

Monday June 23, 2025 1:30pm - 2:10pm MDT

Bluebird Ballroom 2G

If you've been around the container and cloud native ecosystem for any length of time, you know most major components are written in Go: from Docker to runc and from Kubernetes to etcd! This means that many of the common constructs, for example the OCI specs, or Kubernetes API resources, are easy to use from other Go programs, but not quite as easy when you step outside of the Go ecosystem.

In this talk we'll dive into the experience of trying to use containers from a Rust-written client and delve into existing work from early adopters of Rust. There are quite a few crates that help us along the way, providing some level of parity for Rust developers in the cloud native ecosystem. There are still complexities and hurdles as well, and we'll share our experience navigating this as a long-time Go programmer and Rust newbie.

Attendees will take away some quick tips as well as gotchas for working in the container and cloud native ecosystem as a Rust developer and, who knows, maybe soon the Gopher and the Crab will be the best of friends.

Speakers

Phil Estes

Principal Engineer, Core Container Technology, AWS

Phil is a Principal Engineer for Amazon Web Services (AWS), focused on core container technologies that power AWS container offerings like Fargate, EKS, and ECS. Phil is an active contributor and maintainer for the CNCF containerd runtime project, and participates in the Open Container... Read More →

Monday June 23, 2025 1:30pm - 2:10pm MDT
Bluebird Ballroom 2G

Cloud + Containers

Audience Experience Level Beginner

1:30pm MDT

Mainframes Aren’t Dead, They’re Just Running Kubernetes Now - Josephine Pfeiffer, Red Hat

Monday June 23, 2025 1:30pm - 2:10pm MDT

Bluebird Ballroom 2F

Mainframes have been declared dead more times than JavaScript frameworks have been invented—but here they are, still running the backbone of global finance, government, and enterprise computing. And now? They’re running Kubernetes too.

This talk dives into the why and how of running Kubernetes on mainframes, from containerization on z/OS to networking, workload orchestration, and real-world use cases. We’ll break down the challenges, the benefits, and whether this is a clever hack or a genuinely viable approach for modern infrastructure. If you think mainframes are relics, think again—because they’re running microservices now.

Speakers

Josephine Pfeiffer

Senior Cloud Native Consultant, Red Hat

Josephine is a consultant specializing in developer productivity and infrastructure. She has worked for enterprises, SMEs, and startups in roles spanning platform engineering, DevOps, Site Reliability Engineering, and technology management.She is an active open-source contributor... Read More →

Monday June 23, 2025 1:30pm - 2:10pm MDT
Bluebird Ballroom 2F

Cloud + Containers

Audience Experience Level Intermediate

1:30pm MDT

Heterogeneous Linux and RTOS Software Architecture for Low-Price RISC-V Cores - Jim Huang & 繼寬邱, National Cheng Kung University

Monday June 23, 2025 1:30pm - 2:10pm MDT

Bluebird Ballroom 2A

SoCs are increasingly heterogeneous, featuring multiple processor clusters and special-purpose accelerators. As a result, Asymmetric Multiprocessing (AMP) systems must support different operating environments running concurrently on the same chip. This talk outlines the software architecture needed to develop applications for AMP setups, enabling operating systems to interact across diverse homogeneous and heterogeneous configurations. In this way, AMP applications can leverage the parallelism provided by these varied architectures.

Our prototyping efforts focus on low-cost RISC-V processor cores configured as AMP systems, running both the Linux kernel and RTOSes such as ThreadX. This setup includes an IPC layer that implements RPMSG communication between cores. Additionally, our proxy infrastructure highlights how a proxy on the master core can handle POSIX library calls from RTOS-based remote contexts.

Speakers

Jim Huang

Assistant Professor, National Cheng Kung University

Drawing from his contributions to the Android Open Source Project (AOSP), Jim specializes in real-time performance tuning and optimization of Linux-based automations. Additionally, he is a co-founder of the LXDE project, a lightweight desktop environment widely utilized in embedded... Read More →

Chi-Kuan Chiu

Student, National Cheng Kung University

Chi-Kuan Chiu is currently pursuing the B.S. degree in computer science with National Cheng Kung University.

Monday June 23, 2025 1:30pm - 2:10pm MDT
Bluebird Ballroom 2A

Embedded Linux Conference

Audience Experience Level Beginner

1:30pm MDT

Accelerating Computation With GPU Parallel Processing: Enhancing Performance and Efficiency - Akhilesh Shenoy & Aakarsh Jain, Samsung Semiconductor

Monday June 23, 2025 1:30pm - 2:10pm MDT

Bluebird Ballroom 2E

Graphics Processing Units (GPUs) have become key to modern computing, enabling high-performance parallel processing beyond their original role in gaming. Today, they are critical for solving complex computational challenges effectively. To achieve high levels of parallelism, OpenCL is commonly used to break tasks into kernels, which are executed by multiple threads. Optimizing OpenCL performance on GPUs remains a persistent challenge, as it involves fine-tuning both software (OpenCL code, kernels) and hardware. One of the critical factors influencing GPU performance is the effective use of workgroups. The size of workgroups significantly impacts parallelism and efficiency.
This session focuses on key software optimizations in OpenCL, such as efficient memory management, kernel fusion and optimal workgroup sizing in improving GPU performance. We will demonstrate, how optimized OpenCL code can significantly enhance parallel execution and efficiency. This talk also addresses challenges faced by automotive GPUs, including power and thermal constraints with strategies to overcome these. Best practices for writing efficient OpenCL code tailored for automotive GPUs will also be outlined.

Speakers

Akhilesh Shenoy

Associate Staff Engineer at Samsung Semiconductor, Samsung Semiconductor

Embedded Software developer with 4yrs of experience in Linux BSP, domain.

Aakarsh Jain

Associate Staff Engineer at Samsung Semiconductor, Samsung Semiconductor

6yrs of experience in Embedded Linux BSP

Monday June 23, 2025 1:30pm - 2:10pm MDT
Bluebird Ballroom 2E

Linux

Audience Experience Level Beginner

1:30pm MDT

The Generative AI Commons: Unlocking Potential Through Collaboration and Transparency - Arnaud Le Hors, IBM & Ofer Hermoni, iForAI

Monday June 23, 2025 1:30pm - 2:10pm MDT

Bluebird Ballroom 2C

In the rapidly evolving landscape of Generative AI, it is becoming clearer every day that open strategies are key drivers of innovation and widespread adoption. This session will present the Generative AI Commons, its activities, and deliverables to date, including the Model Openness Framework (MOF) and the Responsible Generative AI Framework,

LF AI & Data initiative dedicated to fostering the democratization, advancement and adoption of efficient, secure, reliable, and ethical Generative AI open source innovations through neutral governance, open and transparent collaboration and education.

Speakers

Arnaud Le Hors

Senior Technical Staff Member Open Technologies, IBM

Arnaud Le Hors is Senior Technical Staff Member of Open Technologies at IBM, primarily focusing on Open Source security and AI. He has been working on standards and open source for over 30 years. Arnaud was editor of several key web specifications including HTML and DOM and was a... Read More →

Ofer Hermoni

Founder, Chief AI Officer, iForAI

Dr. Ofer Hermoni is a visionary AI leader with a Ph.D. in Computer Science and 60+ patents in AI, security, networking, and blockchain. He co-founded the Linux Foundation AI and served as its inaugural technical chair, shaping the global AI ecosystem. A two-time startup founder, he... Read More →

Monday June 23, 2025 1:30pm - 2:10pm MDT
Bluebird Ballroom 2C

Open AI + Data

Audience Experience Level Any

1:30pm MDT

Panel Discussion: Open Source: What's Next - Tony Wasserman, Software Methods and Tools; Stormy Peters, Independent; Rao Lakkakula, Microsoft; Nithya Ruff, Amazon; Chris Aniszczyk, The Linux Foundation

Monday June 23, 2025 1:30pm - 2:10pm MDT

Bluebird Ballroom 3C

This proposed session is a panel discussion covering recent developments and likely future directions for open source software, particularly as it applies to companies that are developing and/or using open source software in their products. The invited panelists all have extensive experience that cover the most significant issues facing open source today, including licensing, security, AI, and OSPOs.

Speakers

Tony Wasserman

Principal, Software Methods and Tools

Tony Wasserman has divided his career between academia and industry. He is currently Principal of Software Methods and Tools, and an Advisor in the UC Berkeley SkyDeck accelerator. He was Professor of Sfw Mgmt at CMU-Silicon Valley from 2005-23. Earlier, he was CEO of Interactive... Read More →

Stormy Peters

Open Source Advocate, Self employed

Stormy Peters is VP of Communities at GitHub. She leads the teams responsible for enabling the online creators and open source communities on GitHub, including GitHub’s community product efforts, developer relations, education, and other strategic programs. Throughout her career... Read More →

Rao Lakkakula

Partner Director, Open Source Ecosystem, Microsoft

Rao Lakkakula is the Director of Open Source Ecosystem at Microsoft. Rao has held various roles in open source, security, engineering, risk management, and business intelligence. His previous experience includes leadership positions in security at JPMorgan Chase, Climate Corp, Amazon... Read More →

Nithya Ruff

Director, Amazon OSPO, Amazon

Chris Aniszczyk

CTO, Linux Foundation

Chris Aniszczyk is an open source technologist with a passion for building a better world through open collaboration. He's currently a CTO at the Linux Foundation focused on developer experience and running the Cloud Native Computing Foundation (CNCF). Furthermore, he's a Partner... Read More →

Monday June 23, 2025 1:30pm - 2:10pm MDT
Bluebird Ballroom 3C

Open Source Leadership

Audience Experience Level Intermediate

1:30pm MDT

Disconnected Environments in a Connected World - Daniel Moch, Lockheed Martin & Eddie Zaneski, Defense Unicorns

Monday June 23, 2025 1:30pm - 2:10pm MDT

Bluebird Ballroom 3F

Most modern software assumes the internet is always available—but what happens when it’s not? Air-gapped environments are more prevalent than you might think. While they are essential in government, they’re also common in finance, healthcare, and manufacturing. Yet, a surprising amount of today’s tooling—from CI/CD pipelines to package managers—relies on network access and fails when that assumption is broken.

Working in these environments means finding new ways to handle familiar problems. In this talk, we’ll look at the challenges teams face when managing dependencies, applying updates, and automating deliveries without internet access. We’ll share practical solutions, real-world examples, and ways to make modern development practices work in restricted environments.

Speakers

Daniel Moch

Staff Software Engineer, Lockheed Martin

For over 20 years, Daniel has worked as a software engineer in the Defense and Aerospace industry. His experience ranges from embedded device drivers to large logistics and information systems. In recent years, he has focused on helping legacy programs adopt modern DevOps practices... Read More →

Eddie Zaneski

Technical Advisor to the CTO, Defense Unicorns

Eddie lives in Denver, CO with his wife and dog. He loves open source and works on the Kubernetes project. When not hacking on random things you'll most likely find him climbing rocks somewhere.

Monday June 23, 2025 1:30pm - 2:10pm MDT
Bluebird Ballroom 3F

OpenGovCon

Audience Experience Level Beginner

1:30pm MDT

Alignment of Community Contributions and Business Goals - How Can Your OSPO Help? - Masae Shida, VMware (Broadcom)

Monday June 23, 2025 1:30pm - 2:10pm MDT

Bluebird Ballroom 3G

Today it’s nearly impossible to build software without open source. Some projects are massively popular, and quite often used in multiple products within the same organization. But are we all collaborating on these projects in ways that are aligned across the company? Here your OSPO can help your organization work towards the same goals.
Which open source projects are built into your product portfolio? Who in your organization is contributing to these projects? How do you know your contributions are not impeding each other?
Broader involvement should occur in a coordinated and thoughtful manner across the key projects. Having a united front within open source communities will help your organization drive consistent and effective contributions.
The talk will cover:
● How can your OSPO help coordinate contributions across the organization?
● How can you identify your company’s strategic open source projects?
● How can we ensure these projects will continue to be viable and sustainable?
The audience will learn how an OSPO can enable more efficient and effective contributions to open source projects in ways that are aligned with both their business and community goals.

Speakers

Masae Shida

Staff Technical Program Manager, VMware (Broadcom)

Masae is a Staff Open Source Program Manager leading the company’s open source business and community strategy alignment. Previously she led numerous programs including large-scale DX/IT transformations as part of M&A at Cisco, security/compliance process implementation and consumer... Read More →

Monday June 23, 2025 1:30pm - 2:10pm MDT
Bluebird Ballroom 3G

OSPOCon

Audience Experience Level Any

1:30pm MDT

Lower the Barrier of Entry: Empowering Non-writer Contributions To Docs - Manny Silva, Skyflow

Monday June 23, 2025 1:30pm - 2:10pm MDT

Bluebird Ballroom 3D

Documentation thrives on contributions, but many potential contributors hesitate to edit docs because of uncertainty about style, structure, and quality standards. This talk demonstrates how modern tooling can create a supportive environment that empowers non-writers to confidently contribute to documentation. We'll explore a practical toolkit combining templates for clear structure, AI-powered drafting assistance, automated style checking, format linting, content validation, and quality reviews to guide contributors through the docs process. Through these tools and a streamlined editing workflow, teams can create an environment where developers, product managers, support staff, and other non-writers feel confident contributing while maintaining documentation standards. We'll examine real examples of successful implementations and provide practical steps for adding these capabilities to your own docs.

Speakers

Manny Silva

Head of Documentation, Skyflow

Technical writer by day and engineer by night, Manny Silva is Head of Documentation at Skyflow and the creator of Doc Detective. He’s passionate about intuitive and scalable developer experiences and likes diving into the deep end as the 0th user.

Monday June 23, 2025 1:30pm - 2:10pm MDT
Bluebird Ballroom 3D

Technical Documentation

Audience Experience Level Any

1:30pm MDT

Unconference

Monday June 23, 2025 1:30pm - 2:10pm MDT

Bluebird Ballroom 2H

Do you have a topic you’d like to discuss with fellow attendees? A project or idea you want to share and get feedback on? Something you'd like to teach others? Sign up to lead an Unconference session!
Sessions are informal, attendee-driven, and a great way to connect with others. There will be no AV—only a flip chart will be provided.
You can sign up in advance using this form by June 13, or onsite at the event in the Solutions Showcase - Bluebird Ballroom 1AB. Once your time slot is confirmed, it will be added to the official conference schedule so other attendees can join your session onsite.
Click here to view the Unconference schedule. Be sure to check out the topics being discussed and join us onsite for great conversations!

Monday June 23, 2025 1:30pm - 2:10pm MDT
Bluebird Ballroom 2H

Unconference Sessions

1:30pm MDT

Zephyr for Open Source Health Devices - Ashwin Whitchurch, Protocentral Electronics

Monday June 23, 2025 1:30pm - 2:10pm MDT

Bluebird Ballroom 2B

This talk would highlight the importance of open source health devices and how we used Zephyr across several hardware platforms to develop these devices. We will draw on experiences from our projects including HealthyPi 5, HealthyPi 6 and the wearable HealthyPi Move, all open source hardware and software. More specifically how Zephyr enabled the use of practically a single codebase across three different microcontroller platforms in different form factors.

l will also talk about the challenges faced during the process of making the system wearable and low power and the solutions that worked for us.

Speakers

Ashwin Whitchurch

CEO, Protocentral Electronics

Ashwin is a part of a company called Protocentral Electronics, which is focused on developing open-source hardware for healthcare applications. He is a software and hardware engineer by education and profession, with Masters degrees in both subjects.

Monday June 23, 2025 1:30pm - 2:10pm MDT
Bluebird Ballroom 2B

Zephyr

Audience Experience Level Intermediate

1:30pm MDT

Tutorial: From Planning To Production-Ready RAG With OPEA - Andreas Kollegger, Neo4j; Ezequiel Lanza & Katherine Druckman, Intel

Monday June 23, 2025 1:30pm - 3:05pm MDT

Bluebird Ballroom 3E

Enterprises struggle to integrate fragmented generative AI (GenAI) technologies. Due to its rapid evolution and diverse implementations, even top LLMs hallucinate when answering Kubernetes-related questions.

The Open Platform for Enterprise AI (OPEA), a Linux Foundation project, accelerates GenAI adoption with an orchestration framework that composes microservices via customizable blueprints to deploy or create GenAI applications.

In this hands-on tutorial, developers will deploy advanced retrieval-augmented generation (RAG) applications using Kubernetes. They’ll explore how OPEA orchestrates AI workloads via a microservices architecture and build a production-ready RAG chatbot. Attendees will go beyond deployment, enhancing vector search with knowledge graphs, customizing OPEA components, and scaling AI solutions efficiently on Kubernetes—all while integrating AI agents for more intelligent automation.

Speakers

Ezequiel Lanza

Open Source AI Evangelist, Intel

Passionate about helping people discover the exciting world of artificial intelligence, Ezequiel is a frequent AI conference presenter and the creator of use cases, tutorials, and guides that help developers adopt open source AI tools.

Katherine Druckman

Open Source Evangelist, Intel Corporation

Katherine Druckman is an Open Source Evangelist at Intel, where she enjoys sharing her passion for a variety of open source topics. She currently combines her enthusiasm for software security and emerging AI technology as the OPEA Security Working Group Lead and Co-Chair of the OpenSSF... Read More →

Andreas Kollegger

GenAI Lead for Developer Relations, Neo4j

Andreas is a technological humanist. Starting at NASA, Andreas designed systems from scratch to support science missions. Then in Zambia, he built medical informatics systems to apply technology for social good. Now with Neo4j, he is democratizing graph databases to validate and extend... Read More →

Monday June 23, 2025 1:30pm - 3:05pm MDT
Bluebird Ballroom 3E

Open AI + Data

Audience Experience Level Intermediate

1:30pm MDT

Tutorial: Guarding the Gates: Understanding and Mitigating OWASP's Top 10 LLM Security Risks - Neetu Jain & Kimberly Nowell-Berry, JPMorgan Chase

Monday June 23, 2025 1:30pm - 3:05pm MDT

Bluebird Ballroom 3A

As organizations rapidly adopt Large Language Models (LLMs) in production environments, understanding their unique security vulnerabilities becomes crucial. This session provides a deep dive into OWASP's Top 10 LLM risks, examining real-world examples and practical mitigation strategies.

Speakers

Kimberly Nowell-Berry

JPMorgan Chase

Neetu Jain

Executive Director, JPMC

Neetu Jain is the Executive Director at JP Morgan Chase in the Emerging Technology Security division, where she leads initiatives in AI security. With 20 years of experience in the tech industry, Neetu has driven innovation and security across various domains and products, including... Read More →

Monday June 23, 2025 1:30pm - 3:05pm MDT
Bluebird Ballroom 3A

Open Source 101

Audience Experience Level Intermediate

1:50pm MDT

A Secure Tekton Task by Using Confidential Containers - Tatsushi Inagaki, IBM

Monday June 23, 2025 1:50pm - 2:10pm MDT

Bluebird Ballroom 3B

Software supply chain attack is an emerging threat for today’s enterprises. An attacker first gets an internal network access of the target enterprise, typically by using social engineering. Next the attacker gets administrator access to a software supply chain of the enterprise. Finally the attacker injects a backdoor into a built artifact and steals confidential information or digital assets from the enterprise, or even worse from customers.

A critical attack surface here is the administrator of the software supply chain. Confidential Containers is an open source project to protect containers from administrators by using trusted execution environments (TEEs). It protects a Kubernetes pod from a cluster administrator by running the pod inside of a TEE and validating the pod by remote attestation.

This talk presents a use case of Confidential Containers to protect a Tekton task. You will understand how Confidential Containers protects a task and artifacts even when the cluster administrator is compromised.

Speakers

Tatsushi Inagaki

Staff Research Scientist, IBM

Tatsushi is working on research to enhance the security of IBM Z. He contributed to various open source projects. He is recently contributing to Confidential Containers, which is a sandbox project of Cloud Native Computing Foundation.

Monday June 23, 2025 1:50pm - 2:10pm MDT
Bluebird Ballroom 3B

cdCon

Audience Experience Level Advanced

2:25pm MDT

Securing the Software Supply Chain: Integrating OpenSSF Scorecard, Jenkins, and the Ortelius Project - Tracy Ragan, DeployHub, Inc

Monday June 23, 2025 2:25pm - 2:45pm MDT

Bluebird Ballroom 3B

As the number of software vulnerabilities grows, the need for robust, automated security practices in DevOps pipelines is more critical than ever. OpenSSF Scorecard, an initiative by the Open Source Security Foundation (OpenSSF), provides a framework for evaluating the security posture of open-source projects. Ortelius, an open-source platform and dashboard, builds on this foundation by offering continuous vulnerability tracking and management, integrating with tools like OpenSSF Scorecard and OSV.dev.

Adding to this ecosystem, Jenkins plays a pivotal role as a CI/CD powerhouse, making it an ideal candidate for advancing continuous vulnerability management. In this talk, we’ll explore how integrating Ortelius and OpenSSF Scorecard into Jenkins pipelines empowers teams to automate vulnerability scanning, track security metrics, and respond to threats more efficiently. Attendees will learn how to leverage these tools together to create a secure and automated development lifecycle.

Speakers

Tracy Ragan

CEO, DeployHub, Inc.

Tracy is a recognized expert in software supply chain security and DevSecOps, specializing in managing complex, decoupled architectures. She is the CEO of DeployHub, a scalable continuous vulnerability management platform that empowers software to 'self-heal' by automatically applying... Read More →

Monday June 23, 2025 2:25pm - 2:45pm MDT
Bluebird Ballroom 3B

cdCon

Audience Experience Level Intermediate

2:25pm MDT

EdgeLake: Extending the Cloud To the Edge – an LF Edge Project - Moshe Shadmon, AnyLog

Monday June 23, 2025 2:25pm - 3:05pm MDT

Bluebird Ballroom 2G

As data volumes grow and real-time processing becomes essential, traditional cloud architectures face limitations in cost, latency, and security. The traditional approach moves all edge data to where the queries are executed—in the cloud—leading to inefficiencies and high costs. EdgeLake (https://lfedge.org/projects/edgelake/), an LF Edge project, takes the opposite approach by bringing queries to the source data at the edge, enabling decentralized data management and local AI/ML processing.

In this talk, we’ll explore how EdgeLake eliminates cloud dependencies, optimizes data infrastructure, and reduces operational costs while ensuring real-time decision-making at the edge. We’ll discuss key use cases (and show a live demo) across industrial automation, smart cities, energy, and telecom, demonstrating how organizations can leverage EdgeLake to unlock the full potential of edge computing.

Join us to learn how EdgeLake is reshaping the future of distributed data architectures and making edge intelligence more accessible.

Speakers

Moshe Shadmon

CEO, AnyLog

Monday June 23, 2025 2:25pm - 3:05pm MDT
Bluebird Ballroom 2G

Cloud + Containers

Audience Experience Level Intermediate

2:25pm MDT

Through the Looking Glass: Leveraging Overton Window Concepts To Redefine Infrastructure as Code - Ben Somogyi, Lockheed Martin

Monday June 23, 2025 2:25pm - 3:05pm MDT

Bluebird Ballroom 2F

The Overton window, a concept originating in politics, refers to the range of policies that are considered acceptable to a broad and diverse audience. In this session, we will share our experiences and recommendations on how to successfully adapt to shifting "Overton Windows", as they pertain to mainstreaming our platform to support a wide range of customer requirements while minimizing non-recurring engineering expenses. At Lockheed Martin, we have developed a modular open system that incorporates Secure Supply Chain and Cloud Native standards, enabling us to rapidly deliver capabilities to customers in highly regulated and diverse environments, while navigating the complexities of evolving requirements and priorities.

Speakers

Ben Somogyi

Senior Staff DevSecOps Engineer, Lockheed Martin

Versatile, hands-on technical leader and software developer who is building cloud native solutions for Lockheed Martin and its customers.

Monday June 23, 2025 2:25pm - 3:05pm MDT
Bluebird Ballroom 2F

Cloud + Containers

Audience Experience Level Intermediate

2:25pm MDT

The State of SBoMs in Embedded - Joshua Watt, Garmin

Monday June 23, 2025 2:25pm - 3:05pm MDT

Bluebird Ballroom 2A

Software Bill of Materials (SBoMs) are being increasingly called for in all Software ecosystems, to the point of being mandatory for regulatory compliance. The Embedded space is no different in this regard, so being aware of the available options for complying with SBoM is becoming critical for Embedded development.

In this talk, Joshua will outline prominent options for dealing with SBoM requirements across Open Source Embedded-focused projects, and what to look for in SBoMs for embedded projects to maximize their usefulness.

Speakers

Joshua Watt

Software Engineer, Garmin

Joshua has been working as a software engineer for Garmin since 2008, primarily focused on building products using the Yocto Project. He is also involved with the SPDX community and a member of the OpenEmbedded Technical Steering Committee.

Monday June 23, 2025 2:25pm - 3:05pm MDT
Bluebird Ballroom 2A

Embedded Linux Conference

Audience Experience Level Intermediate

2:25pm MDT

Make Valkey Multi-threaded With Userspace RCU - Jim Huang, National Cheng Kung University

Monday June 23, 2025 2:25pm - 3:05pm MDT

Bluebird Ballroom 2E

This presentation explores how to create a multi-threaded version of Valkey by employing userspace Read-Copy-Update (RCU) to achieve high performance. With fewer than 2,000 lines of code modifications, we introduce a coordinator-worker pattern, enabling key-value stores like Valkey and Redis to handle tasks concurrently across multiple threads while using a per-thread event loop for I/O operations. Userspace RCU facilitates lock-free data sharing between a writer thread and multiple reader threads, dramatically improving read performance.

Our experiments show that the multi-threaded Valkey can achieve over one million operations per second on a standard server.

Speakers

Jim Huang

Assistant Professor, National Cheng Kung University

Monday June 23, 2025 2:25pm - 3:05pm MDT
Bluebird Ballroom 2E

Linux

Audience Experience Level Beginner

2:25pm MDT

Navigating the Sea of CVEs: Securing Your Linux Distributions - Jess Lowe & Holly Gong, Google

Monday June 23, 2025 2:25pm - 3:05pm MDT

Bluebird Ballroom 2D

Are you drowning in a sea of vulnerability advisories, wondering why patching one thing doesn't fix everything? Despite a shared origin, a CVE's impact diverges significantly across Linux distributions. Consequently, a fix at the source does not automatically translate to comprehensive protection downstream. Each distribution requires independent patching, leading to a complex web of security advisories stemming from a single flaw.

In this talk, you'll learn how OSV tools can help you navigate this sea of advisories. We'll explore the root causes of advisory proliferation in Linux and demonstrate how OSV.dev aggregates and cross-references vulnerability data at scale to provide a more complete picture. You'll also see how OSV-Scanner accurately identifies vulnerabilities in your Linux systems, considering distribution-specific nuances and offering actionable guidance. By the end of this session, you'll be equipped with the knowledge and tools to patch smarter and secure your Linux infrastructure more effectively.

Speakers

Jess Lowe

Software Engineer, Google

Jess is a Software Engineer in the Google Open Source Security Team working on OSV.dev and OSV-Scanner.

Holly Gong

Software Engineer, Google

Software Engineer at Google

Monday June 23, 2025 2:25pm - 3:05pm MDT
Bluebird Ballroom 2D

Linux

Audience Experience Level Beginner

2:25pm MDT

Beaconforge.org, Open Agentic AI for Hallucination Mitigation - Diego Gosmar, Voiceinteroperability.ai, LF AI and Data

Monday June 23, 2025 2:25pm - 3:05pm MDT

Bluebird Ballroom 2C

This talk will describe the emerging standard and the Beaconforge.org framework, which is being developed by the Voiceinteroperability.ai Project of the LFAI and Data Foundation, to enable conversational assistants to interact with each other. Beaconforge.org is based on a standardized set of novel agentic inter-assistant messages that utilize NLP (Natural Language Processing) Universal APIs.

We will also explore how Agentic AI frameworks like Beaconforge.org can help mitigate hallucination effects in generative AI agents. This will be demonstrated through an empirical experiment involving hundreds of diverse prompts, a chain of multiple agents, and four novel KPIs used to evaluate hallucination score mitigation.

More information about the project can be found in the following papers:
Diego Gosmar et al., 2025. Hallucination Mitigation using Agentic AI Natural Language-Based Frameworks, https://arxiv.org/abs/2501.13946

Diego Gosmar et al., 2024. Conversational AI Multi-Agent Interoperability, Universal Open APIs for Agentic Natural Language Multimodal Communications, https://arxiv.org/abs/2407.19438

Speakers

Diego Gosmar

Principal AI Advisor, Voiceinteroperability.ai, LF AI and Data

Diego Gosmar serves as Chief AI Officer specializing in Artificial Intelligence, with particular focus on Generative Conversational AI, Natural Language Processing (NLP), AI Agent interoperability, Sustainable and Ethical Conversational AI.Diego is member of the Open Voice Interoperability... Read More →

Monday June 23, 2025 2:25pm - 3:05pm MDT
Bluebird Ballroom 2C

Open AI + Data

Audience Experience Level Intermediate

2:25pm MDT

Panel Discussion: Driving Automotive Transformation With Open Source - Philipp Ahmann, Etas GmbH (BOSCH); Kate Stewart, The Linux Foundaiton; Masato Endo, Toyota Motor Corporation; Wolfgang Gehring, Mercedes Benz Tech Innovation

Monday June 23, 2025 2:25pm - 3:05pm MDT

Bluebird Ballroom 3C

Open source software has long been utilized in automotive systems, yet the industry is experiencing a renewed focus on its strategic utilization also sparked by the so called Software Defined Vehicle. The establishment of OSPOs across numerous OEMs and Tier suppliers further signals this shift.

This panel digs into the motivations and implications of this trend. The panelist will explore the historical context of OSS in automotive, contrasting it with the current OSPO-driven approach. Key discussion points include the rationale for OSPO creation, the specific challenges they tackle – particularly in light of global sanctions, increasing connectivity demands, and the imperative for cyber resilience – and the anticipated impact on the automotive software landscape with regulated safety-critical Software Defined Vehicle systems.

Speakers

Philipp Ahmann

Sr. OSS Commumity Manager, Etas GmbH (BOSCH)

Philipp Ahmann is a Senior OSS Community Manager at ETAS (a Bosch subsidiary), specializing in safety-critical automotive open source software. With 15+ years' experience in Linux automotive platforms, he has held roles from software engineer to project & line manager. He currently... Read More →

Kate Stewart

VP Dependable Embedded Systems, The Linux Foundation

Kate Stewart works with the safety, security and license compliance communities to advance the adoption of best practices into embedded open source projects. Since joining The Linux Foundation, she has launched the ELISA and Zephyr Projects, as well as supporting other embedded projects... Read More →

Masato Endo

Project General Manager, Toyota Motor Corporation

Masato Endo is a Project General Manager of Value Chain Innovation Project in TOYOTA. He focuses also on promoting Open Source Innovation and he set up TOYOTA OSPO in 2024. Furthermore, he plays the following roles in Open Source Communities. -The Linux Foundation Japan Evangelist... Read More →

Wolfgang Gehring

OSPO Lead / FOSS Ambassador, Mercedes Benz Tech Innovation

Dr. Wolfgang Gehring is an Ambassador for Open and Inner Source and has been working on enabling and spreading the idea within Mercedes-Benz. A software engineer by trade, Wolfgang’s goal is to help enable Mercedes-Benz to fully embrace FOSS and become a true Open Source company... Read More →

Monday June 23, 2025 2:25pm - 3:05pm MDT
Bluebird Ballroom 3C

Open Source Leadership

Audience Experience Level Intermediate

2:25pm MDT

Load Testing Is Complicated: A Case Study of NJ Unemployment Insurance - Rob Bayliss, Mighty Acorn Digital

Monday June 23, 2025 2:25pm - 3:05pm MDT

Bluebird Ballroom 3F

In this session we will perform a case study of load testing for a US State’s Unemployment Insurance Modernization initiative. We will talk about the unique requirements and constraints of the project, such as the looming specter of the COVID-19 Unemployment boom. We’ll also review how the testing was done and why we ultimately decided on using browser-based tools such as Artillery with Playwright to build a testing system that could deliver and measure massive amounts of realistic traffic in a way that is quick (30 minutes) and easy to run. Attendees will walk away with an understanding of how one might approach load testing for a system like this, and why using browser based testing might or might not be a good idea.

Speakers

Rob Bayliss

Director, Mighty Acorn Digital

Rob Bayliss is passionate about automation, and has been building fast, reliable systems for state governments since 2017. He is passionate about performance, and once led an initiative to reduce the response times of Mass.gov by 50%, preventing downtime during the pandemic. In 2023... Read More →

Monday June 23, 2025 2:25pm - 3:05pm MDT
Bluebird Ballroom 3F

OpenGovCon

Audience Experience Level Intermediate

2:25pm MDT

The Role of Package Managers as Partners in License and Attribution Compliance - Damián Vicino, Datadog Inc.

Monday June 23, 2025 2:25pm - 3:05pm MDT

Bluebird Ballroom 3G

Package managers are essential to modern software development, simplifying dependency management but often hiding transitive changes. This has led to large, shifting dependency trees with little oversight.

Despite evolving independently, most package managers follow a similar model: fetching software and metadata. However, the format, quantity, and quality of this metadata vary significantly.

With heterogeneous language stacks on the rise, OSPOs struggle to manage these differences, making compliance an ongoing challenge.

This talk explores different package managers, the compliance data they provide, and highlights good practices from each. Finally, it proposes how the OSPO community can break silos between ecosystems, encouraging convergence on non-language-specific metadata and practices. This, in turn, will streamline compliance work and strengthen the open source ecosystem as a whole.

Speakers

Damián Vicino

Senior Open Source Specialist, Datadog Inc.

Damian Vicino is a Senior Open Source Specialist at Datadog’s OSPO and an Adjunct Research Professor at Carleton University. He began contributing to open source in the early 2000s, leading a local BSD user group and collaborating with a team on five BSDday Argentina events. He... Read More →

Monday June 23, 2025 2:25pm - 3:05pm MDT
Bluebird Ballroom 3G

OSPOCon

Audience Experience Level Any

2:25pm MDT

Radical Transparency: Lessons From Open-Sourcing Nearly All Company Documentation - Victor Lyuboslavsky, Fleet Device Management

Monday June 23, 2025 2:25pm - 3:05pm MDT

Bluebird Ballroom 3D

In an era when transparency is often a corporate buzzword, few companies truly embrace it at scale. What happens when a company commits to making nearly all of its internal documentation open source? What are the benefits, risks, and unexpected cultural shifts that arise?

In this session, we’ll take a deep dive into our company’s journey of open-sourcing nearly all documentation—from GitHub issues and design review notes to sprint demos and research documents. We’ll explore the motivations behind this decision, the technical and cultural challenges we faced, and the impact on our customers, employees, and open-source contributors.

Join us as we dissect the practical realities of radical transparency in engineering and product development. Whether you’re considering a similar approach or simply want to understand how transparency at scale affects innovation, security, and collaboration, this session will provide invaluable lessons and strategies.

Speakers

Victor Lyuboslavsky

Software Engineer, Fleet Device Management

Victor is an engineer, author, and entrepreneur with over 25 years of technical leadership and hands-on development experience. Victor has worked in various industries, including semiconductors, health care, and cyber security. He is currently building security telemetry and MDM at... Read More →

Monday June 23, 2025 2:25pm - 3:05pm MDT
Bluebird Ballroom 3D

Technical Documentation

Audience Experience Level Beginner

2:25pm MDT

Unconference

Monday June 23, 2025 2:25pm - 3:05pm MDT

Bluebird Ballroom 2H

Do you have a topic you’d like to discuss with fellow attendees? A project or idea you want to share and get feedback on? Something you'd like to teach others? Sign up to lead an Unconference session!
Sessions are informal, attendee-driven, and a great way to connect with others. There will be no AV—only a flip chart will be provided.
You can sign up in advance using this form by June 13, or onsite at the event in the Solutions Showcase - Bluebird Ballroom 1AB. Once your time slot is confirmed, it will be added to the official conference schedule so other attendees can join your session onsite.
Click here to view the Unconference schedule. Be sure to check out the topics being discussed and join us onsite for great conversations!

Monday June 23, 2025 2:25pm - 3:05pm MDT
Bluebird Ballroom 2H

Unconference Sessions

2:25pm MDT

FUOTA Using LORAWAN and Zephyr : DFU in the 'Real' World - Sidd Gupta, Demar Inc. (DBA Zylum)

Monday June 23, 2025 2:25pm - 3:05pm MDT

Bluebird Ballroom 2B

The FUOTA (Firmware Update Over-The-Air) specification(s) from LoRa Alliance make up the framework that underpins the critical task of firmware updates of end points (typically battery operated sensors and actuators) that communicate using the LoRaWAN protocol.

The fundamental limitation of the FUOTA specification, as it exists today, is that it does not expect Firmware Artifacts to exceed a few hundred KB in size. With the increasing adoption of the Zephyr RTOS, along with more sophisticated capabilities being added to the end device, artifact sizes have quickly grown to 500 kB (and beyond). This limitation quickly starts to have a real impact, especially as the cost of doing so called 'drive by' updates (using BLE or other higher throughput transports) can get prohibitive.

We present a novel solution to this problem, leveraging the existing and well supported Device Firmware Update (DFU) specification.

In our solution, the LORAWAN protocol becomes another type of SMP transport (along with the already supported Shell, Bluetooth and UDP). We have extended the open source smpclient library from intercreate, as well as the open source LBM stack from Semtech to achieve this.

Speakers

Sidd Gupta

Principal, Demar Inc. (DBA Zylum)

I'm a proud software engineering craftsman, with around 30 years of experience, mostly coding, with a few detours into management and startup entrepreneurship. I run Zylum with my collaborator Guinnes Singh - we're your Zero to One (and beyond) guys. I am currently interested in the... Read More →

Monday June 23, 2025 2:25pm - 3:05pm MDT
Bluebird Ballroom 2B

Zephyr

Audience Experience Level Intermediate

2:45pm MDT

Lock the Chef in the Kitchen: Enabling Accurate SBOMs Via Hermetic Builds - Adam Cmiel, Red Hat

Monday June 23, 2025 2:45pm - 3:05pm MDT

Bluebird Ballroom 3B

Imagine your source repository is a kitchen, and the CI task that builds your software is a chef cooking soup. Most attempts to obtain the list of ingredients for the soup will fall into one of two categories.

"Source SBOM" tools gather the list of ingredients by scanning the entire kitchen. There are some recipes and ingredients in the kitchen, but are all of them relevant? Are they correct and complete? What if the chef looks up the recipe online and then orders the missing ingredients?

"Analyzed SBOM" tools try to derive the list of ingredients from the finished soup. This is hard to do well, impossible when the ingredients dissolve completely. And the tool has no chance of knowing where the ingredients came from.

How about we do this: Select the right recipe(s) for the soup. Buy all the ingredients ourselves. Leave them in the kitchen and lock the chef in there until the meal is done. We now have a complete list of ingredients (or a failed soup), and we know where we got them.

Meet Hermeto, a tool that enables your CI pipeline to lock the chef in the kitchen!

Speakers

Adam Cmiel

Senior Software Engineer, Red Hat

I'm a software engineer at Red Hat. I work on Konflux, an open-source CI/CD system focused on supply chain security (that we also use internally at Red Hat to build and release products). I focus on enabling builds to be as secure as possible.

Monday June 23, 2025 2:45pm - 3:05pm MDT
Bluebird Ballroom 3B

cdCon

Audience Experience Level Intermediate

3:05pm MDT

Coffee Break

Monday June 23, 2025 3:05pm - 3:35pm MDT

Solutions Showcase - Bluebird Ballroom 1AB

Monday June 23, 2025 3:05pm - 3:35pm MDT
Solutions Showcase - Bluebird Ballroom 1AB

Special Events / Exhibits / Breaks

3:35pm MDT

Intentrace, Making Strace More Human Using Rust - Mohammad Khalid, Independent

Monday June 23, 2025 3:35pm - 3:45pm MDT

Bluebird Ballroom 2D

Understand how all binaries interact with the linux kernel, how the linux kernel sees userspace code, how it expects it to behave, and how you, an author of such programs, should in response interact with it. intentrace is a rewrite of strace in Rust. currently in Beta.

Speakers

Mohammad Khalid

Software Engineer

A Mechanical Engineer and current Rust programmer. Mohammad had a short stint in manufacturing, and another in Oil & Gas, has since transitioned into Software Engineering and is interested in low level programming.

Monday June 23, 2025 3:35pm - 3:45pm MDT
Bluebird Ballroom 2D

Linux

Audience Experience Level Beginner

3:35pm MDT

Reducing the Risk of Source Tampering With SLSA - Tom Hennen, Google

Monday June 23, 2025 3:35pm - 3:55pm MDT

Bluebird Ballroom 3B

In 2023 Supply-chain Levels for Software Artifacts (SLSA) was released. It provided a framework for protecting software from tampering within the CI/CD workflow from source to publication. Now it’s nearing completion of the SLSA Source Track which brings a similar level of assurance to the management of source code.

The Source Track addresses the threat of tampering with source code within the repository and allows malicious changes to source to be attributed to the actors that introduced those changes. In addition, it provides a framework for recording additional results about source revisions such as if a code review was performed or if the source was analyzed by SAST tools.

We’ll cover how this track can prevent attacks like the 2021 attack against PHP where malicious commits were added to the PHP repository and how it can be used to ensure additional controls (like code review) are implemented to protect against attacks like the recent one against xz. Finally we'll discuss how the source track can be implemented in existing source control systems by examining a proof-of-concept that enables Source Level 3 without specialized support from the source control platform.

Speakers

Tom Hennen

Senior Staff Software Engineer, Google

Tom is a Senior Staff Software Engineer at Google where he’s a UTL on the Software Supply Chain Integrity program. He’s responsible for securing the internal software supply chain, while limiting toil. His focus is ensuring interoperability, extensibility, and adoption of Google’s... Read More →

Monday June 23, 2025 3:35pm - 3:55pm MDT
Bluebird Ballroom 3B

cdCon

Audience Experience Level Intermediate

3:35pm MDT

A Brief History of Kubernetes Fleet Controllers & Essential Features - Mickael Alliel, Komodor

Monday June 23, 2025 3:35pm - 4:15pm MDT

Bluebird Ballroom 2G

Managing a few Kubernetes clusters may be feasible, but scaling up to hundreds or thousands introduces unique challenges. At a 100:1 cluster to engineer ratio, standardization, observability, security, and access control become pressing issues. This is when DevOps must shift from "infrastructure engineers" to "platform engineering," where infrastructure needs are fully automated and self-service.

As K8s adoption grows in large organizations, demand for "massive multi-cluster fleet management" support has intensified. This talk examines essential features for Kubernetes fleet controllers, offering a fast-paced review of five open-source tools: Clusternet, Karmada, Crossplane, ClusterAPI, and Rancher. Each tool's unique strengths in provisioning, management, and application support will be covered, showing how each addresses multi-cluster management challenges.

This approach will provide a replicable framework to evaluate & choose the right tools based on specific organizational needs.

Speakers

Mickael Alliel

Backend Tech Lead, Komodor

Mickael is a self-taught developer turned DevOps, passionate about automation, innovation, and creative problem-solving. Mickael enjoys challenging himself and experimenting with new technologies and methodologies. Currently, he is working on developing the next-gen K8s troubleshooting... Read More →

Monday June 23, 2025 3:35pm - 4:15pm MDT
Bluebird Ballroom 2G

Cloud + Containers

Audience Experience Level Intermediate

3:35pm MDT

Toward Usable Open-source Remote Attestation for Cloud and Edge - Lily Sturmann & Michael Peters, Red Hat

Monday June 23, 2025 3:35pm - 4:15pm MDT

Bluebird Ballroom 2F

The ability to quickly observe and respond to security threats on remote machines is critically important for business and infrastructure, yet gaps still exist when applying cryptographic attestation solutions in real-world scenarios. Accessible policy generation, clear ways to understand attestation results, and methods for handling system updates need to be available to make remote attestation feasible. Adapting attestation best practices and tools to environments like edge and IoT, with vast scale requirements and limited network connectivity, can pose challenges as well.

Using the speakers’ experience working on open source projects Keylime (remote attestation) and flightctl (edge management), the session will walk through design considerations and challenges in bringing these tools together to monitor remote fleets of edge, IoT, and cloud-based systems at key points in the devices’ lifecycles. Further, the session will discuss remaining open problems as well as some potential solutions working toward the goal of usable, clear, and accurate attestation of remote systems.

Speakers

Lily Sturmann

Principal Software Engineer, Red Hat

Lily is a principal software engineer at Red Hat in the Office of the CTO in Emerging Technologies. She has primarily worked remote attestation, confidential computing, and software supply chain security. Her favorite language is Rust.

Michael Peters

Red Hat, Red Hat

Michael Peters is a Principal Engineer in Emerging Technologies in Red Hat's Office of the CTO. He is a senior systems engineer and programmer with an emphasis on DevOps, Security, and Operability and is one of the current maintainers of the Keylime project. His experience in both... Read More →

Monday June 23, 2025 3:35pm - 4:15pm MDT
Bluebird Ballroom 2F

Cloud + Containers

Audience Experience Level Advanced

3:35pm MDT

Extending Power Over Ethernet to the LTC4266 - Kyle Swenson, Ericsson Software Techology

Monday June 23, 2025 3:35pm - 4:15pm MDT

Bluebird Ballroom 2A

Leveraging the recently added Power over Ethernet (PoE) Power Supply Equipment (PSE) support, this talk will go over the current status and the experience implementing support for the LTC4266, the last major PSE chipset on the market. We'll go over the basics of Power over Ethernet, the existing upstream support and in-kernel framework, the user-space interface for controlling PSE, and then dive into the LTC4266 driver specifics.

Speakers

Kyle Swenson

Prinicpal Engineer, Ericsson Software Techology

Kyle maintains the open-source components in the embedded Linux distributions that run on Ericsson's Enterprise Wireless Solution routers, primarily working with the Linux kernel.

Monday June 23, 2025 3:35pm - 4:15pm MDT
Bluebird Ballroom 2A

Embedded Linux Conference

Audience Experience Level Intermediate

3:35pm MDT

State Persistence Over kexec - Mike Rapoport, Microsoft

Monday June 23, 2025 3:35pm - 4:15pm MDT

Bluebird Ballroom 2E

For long time kexec was a faster way to reboot a machine without incurring delays caused by firmware and bootloaders. However for many applications even a kexec reboot still means significant service degradation, like disruption of the running guests in virtualized environments and the need to rebuild in-memory caches for large databases.

We propose Kexec HandOver (KHO) mechanism that allows serialization and deserialization of kernel data as well as preserving arbitrary memory ranges across kexec.

In addition, KHO keeps physically contiguous memory regions that are guaranteed to not have any memory that KHO would preserve, but still can be used by the system. The kexeced kernel bootstraps itself using those regions and marks all handed over memory as in use. KHO users then can recover their state from the preserved data. This includes memory reservations, where the user can either discard or claim reservations.

Speakers

Mike Rapoport

Principal Software Engineer, Microsoft

Mike has lots of programming experience in different areas ranging from medical equipment to visual simulation, but most of all he likes hacking on Linux kernel and low level stuff. He started contributing to the Linux kernel while working on ARM and device drivers and then gradually... Read More →

Monday June 23, 2025 3:35pm - 4:15pm MDT
Bluebird Ballroom 2E

Linux

Audience Experience Level Advanced

3:35pm MDT

The MODERN Modern Data Stack: Building an Open Distributed Data Warehouse Beyond Data Lakes - David Aronchick, Expanso

Monday June 23, 2025 3:35pm - 4:15pm MDT

Bluebird Ballroom 3E

Organizations face a critical challenge: data is growing exponentially across distributed locations, but traditional centralized processing approaches are becoming unsustainable. With the majority of enterprise data going unused, companies struggle with massive transfer costs, compliance issues, and network reliability problems when moving data to centralized infrastructure.

This talk introduces a paradigm shift: bringing compute to where data lives. Using the open-source Bacalhau project, we'll demonstrate how to:

- Deploy distributed processing jobs across clouds, edge devices, and on-premises infrastructure
- Reduce data movement costs while maintaining centralized control
- Ensure compliance by processing sensitive data in place
- Enable real-time analytics at the edge

Through real-world examples, including an energy company managing 15,000 microgrids and cities processing camera feeds, attendees will learn practical patterns for modernizing their data infrastructure. We'll explore architectural patterns, security considerations, and best practices for implementing compute-over-data architectures.

Speakers

David Aronchick

CEO, Expanso

David Aronchick is CEO of Expanso, the distributed computing company built on Bacalhau ([https://bacalhau.org](https://bacalhau.org/)). Previously, he led Compute over Data at Protocol Labs, Open Source Machine Learning Strategy at Azure, was a product management for Kubernetes... Read More →

Monday June 23, 2025 3:35pm - 4:15pm MDT
Bluebird Ballroom 3E

Open AI + Data

Audience Experience Level Intermediate

3:35pm MDT

What’s New in Valkey - Madelyn Olson, Amazon & Ping Xie, Google

Monday June 23, 2025 3:35pm - 4:15pm MDT

Bluebird Ballroom 2C

Valkey is the leading open-source database for building high performance applications that are compatible with the Redis API. It natively integrates with many popular frameworks and is commonly used for a wide range of applications such as caching, session storage, streaming, and more. In this talk, hear from members of the Valkey technical steering committee discuss some of the exciting new functionality that has been released including the new bloom filter data type, vector similarity search, and a new hash table implementation that reduces memory overhead and improves performance. We'll talk about how these functionalities enable next generation use cases and what's coming in upcoming releases.

Speakers

Madelyn Olson

Software Engineer, Amazon

I work primarily on the open source Redis project and evangelize the importance of open source software development.

Ping Xie

Senior Staff Software Engineer, Google

Ping Xie is a maintainer of Valkey and a Senior Staff Software Engineer at Google, working on GCP Memorystore. As an active contributor to Valkey, Ping focuses on core development, community engagement, and ensuring Valkey remains a reliable and adaptable solution for a wide range... Read More →

Monday June 23, 2025 3:35pm - 4:15pm MDT
Bluebird Ballroom 2C

Open AI + Data

Audience Experience Level Intermediate

3:35pm MDT

Death by (Python) Pickle: "Betrayal ML" - Kadi McKean & Andy Lewis, ReversingLabs

Monday June 23, 2025 3:35pm - 4:15pm MDT

Bluebird Ballroom 3A

In the original Matrix movie, Neo learned Kung Fu through an upload. Imagine if your ML could learn the same way. That's what a pickle file does for ML - "I KNOW KUNG FU" or whatever was in the file that was supposed to be "learned" by your ML model.

What if there was a plot twist where Agent Smith tampered with the Kung Fu module so that it included a fun "bonus" lesson that "taught" Neo to call Agent Smith every time he was trying to find an exit?

That's what's happening in Pickle Files, and that's the setup for ML and AI.

This talk will explain the threat, provide some examples, and discuss emerging detection capabilities. When it's over, you will know kung fu.

Speakers

Kadi McKean

Community Manager, ReversingLabs

Kadi is passionate about the DevOps / DevSecOps community since her days of working with COBOL development and Mainframe solutions. At ReversingLabs she collaborates with developers and security researchers to help entities prioritize their open source risk, reduce technical debt... Read More →

Andy Lewis

TMM and Honeybee Wrangler, ReversingLabs

Despite his misguided childhood and checkered past, Andy has become a contributing member of society. A former US Marine, Andy led the cyber team at Dish & a few other organizations before his journey to The Dark Side of pre-sales engineering. He founded the Denver and Boulder OWASP... Read More →

Monday June 23, 2025 3:35pm - 4:15pm MDT
Bluebird Ballroom 3A

Open Source 101

Audience Experience Level Any

3:35pm MDT

Panel Discussion: The Impact of Funding for Sustainable Open Source Projects - Georg Link, Bitergia; Cailean Osborne, The Linux Foundation; Dawn Foster, CHAOSS

Monday June 23, 2025 3:35pm - 4:15pm MDT

Bluebird Ballroom 3C

Open source software has become ubiquitous and can be found in almost every codebase, but sustaining those open source projects and communities over the long-term can be a challenge. Much of the critical infrastructure that we all rely on is made up of open source projects that lack the resources to be properly maintained over the long term. Companies, public institutions, and philanthropic organizations are beginning to fill this gap, but measuring the impact of this funding is an ongoing challenge. Funders need to be able to understand the impacts to justify future rounds of funding as well as to optimize funding approaches whilst mitigating ineffective or even harmful approaches.

In this panel, we’ll talk about what we’ve learned from public funding programs in Europe and corporate FOSS funds along with measuring the impact of those funding initiatives. We’ll discuss the challenges that funders have to understand how their funding can have positive or negative impacts on open source projects with different characteristics. The audience will gain an appreciation for funding initiatives for open source projects and how to understand and maximize the impact of those initiatives.

Speakers

Cailean Osborne

Senior Researcher, Linux Foundation

Cailean is a Researcher at the Linux Foundation and a PhD Candidate in Social Data Science at the Oxford Internet Institute, University of Oxford. His interests are in OSS, the digital commons, and public interest computing. Previously, Cailean worked as the International Policy Lead... Read More →

Georg Link

Open Source Strategist and Director of Sales, Bitergia

Georg’s mission is to make open source more professional by using community metrics and analytics. Georg cofounded the CHAOSS Project to advance analytics and metrics for open source project health. Georg is an active contributor to several projects and has often presented on open... Read More →

Dawn Foster

Director of Data Science, CHAOSS

Dr. Dawn Foster works as the Director of Data Science for CHAOSS where she is also a board member / maintainer. She is co-chair of CNCF TAG Contributor Strategy and an OpenUK board member. She has 20+ years of experience at companies like VMware and Intel with expertise in community... Read More →

Monday June 23, 2025 3:35pm - 4:15pm MDT
Bluebird Ballroom 3C

Open Source Leadership

Audience Experience Level Intermediate

3:35pm MDT

Navigating the Challenges of Meeting Government SBOM Regulations in Decoupled Architectures - Tracy Ragan, DeployHub, Inc

Monday June 23, 2025 3:35pm - 4:15pm MDT

Bluebird Ballroom 3F

As government regulations, such as Executive Order 14028 - Improving the Nation's Cybersecurity, drive organizations to adopt Software Bill of Materials (SBOM) reporting, modern software systems face unique challenges in achieving compliance. Decoupled cloud-native architectures—comprised of microservices, containers, APIs, and distributed dependencies—make it exponentially more difficult to produce accurate, real-time SBOMs. This talk explores the complexities of implementing SBOM practices in distributed environments, the risks of non-compliance, and strategies to streamline compliance efforts.

Speakers

Tracy Ragan

CEO, DeployHub, Inc.

Monday June 23, 2025 3:35pm - 4:15pm MDT
Bluebird Ballroom 3F

OpenGovCon

Audience Experience Level Beginner

3:35pm MDT

Sponsored Session: Operational Data Stores for Financial Risk Mitigation - Bryce Curtis, Discover Financial Serves

Monday June 23, 2025 3:35pm - 4:15pm MDT

Bluebird Ballroom 3H

Managing risk is always top-of-mind in the financial industry and mitigation is essential to reduce it. One significant risk is the software supply chain that represents the complex network of processes, tools and stakeholders involved in the development, distribution and deployment of software throughout the entire software development lifecycle (SDLC). Operational Data Stores (ODS) can be used to help mitigate the risk associated with software running in any enterprise. They accomplish this by aggregating and correlating operational data from across the disparate systems and tools that comprise the SDLC pipeline into a single, standards-based software bill of materials (SBOMs) data model. By providing real-time data access for investigational queries and composite views of all applications for stakeholders and regulatory agencies, risk associated with the full lifecycle of software management and consumption can be mitigated. Join this session to see how Discover is embracing Operational Data Stores and how it can apply to the broader enterprise community.

Speakers

Bryce Curtis

Expert Solution Innovator, Discover Financial Serves

Bryce Curtis is an Expert Solution Innovator in the Discover Financial Serves R&D Lab, where he is a technology leader and researcher for numerous emerging technologies and projects. Bryce has been active in the open source community for many years and believes that open source enables... Read More →

Monday June 23, 2025 3:35pm - 4:15pm MDT
Bluebird Ballroom 3H

Operations Management

3:35pm MDT

Open Source as a Business Imperative: Leveraging PEST Analysis for Strategic Alignment - Kazumi Sato & Masayuki Kuwata, Sony Group Corporation

Monday June 23, 2025 3:35pm - 4:15pm MDT

Bluebird Ballroom 3G

Open source has become a critical component of modern business strategy, yet its importance has often been overlooked in traditional strategic discussions. This presentation demonstrates how PEST analysis can be used to clarify its strategic value.

We validated Sony's history with open source initiatives in electronics, gaming, and film production, this analysis shows how these efforts aligned with favorable external factors. This provides insights into how open source drives innovation and talent acquisition.

Looking forward, this presentation explores how companies can strategically align their open source initiatives with current political, economic, social, and technological trends. This includes understanding the impact of emerging regulations, generative AI, and the evolution of distributed collaboration.

Participants gain valuable insights into the strategic importance of open source and learn how to effectively advocate for open source initiatives within their organizations. This presentation offers practical tips for engaging both management and engineers in open source activities, ensuring that open source becomes a key driver of business success.

Speakers

Kazumi SATO

Chief Software Engineer, Chief Open Source Strategist, Distinguished Engineer, Sony Group Corporation

Kazumi SATO is a Distinguished Engineer in Sony. He has been working on Linux-based system software for various Sony products. He also has been working on OSS compliance and relationship with communities in Sony Group. Since 2002, when Sony started to use Linux, he has been leading... Read More →

Masayuki Kuwata

Senior Manager, Sony Group Corporation

Masayuki Kuwata is the OSPO leader of Sony Group Corporation since April 2022. Previously worked on developing embedded software for camcorders and cameras. Currently leading the open source strategy across business units. Organizer of Japan OSPO Local Meetup in Japanese, supported... Read More →

Monday June 23, 2025 3:35pm - 4:15pm MDT
Bluebird Ballroom 3G

OSPOCon

Audience Experience Level Intermediate

3:35pm MDT

Documenting the Design of the Linux Kernel - Chuck Wolber, The Boeing Company; Kate Stewart, The Linux Foundaiton; Gabriele Paoloni, Red Hat

Monday June 23, 2025 3:35pm - 4:15pm MDT

Bluebird Ballroom 3D

As part of a broader effort to document the architecture and design of the Linux Kernel, we propose a method to formally describe low level developer intent in the form of testable expectations (i.e. requirements). This will provide a fact based foundation for pass/fail test development, test validation via code coverage tools, support optional traceability to higher level design, and enable tool development for process automation.

This talk is a continuation of the proposal for Linux Kernel Requirements that formally originated at the 2024 Linux Plumbers Safe Systems with Linux Mini-conference, and further updated at the December 2024 ELISA Workshop at Goddard Space Center.

This edition will present the current state of the requirement template design, provide examples of Linux kernel source code instrumented with low level requirements, present technical explanations for template design decisions, and provide an opportunity for feedback from the developer community.

Speakers

Chuck Wolber

Associate Technical Fellow, The Boeing Company

Chuck Wolber is a Boeing Associate Technical Fellow primarily focused on embedded platform engineering. He has developed multiple DO-178C certified Linux platforms currently in service on Boeing production aircraft. Chuck is co-author of the book Linux Toys, he is credited with contributions... Read More →

Kate Stewart

VP Dependable Embedded Systems, The Linux Foundation

Gabriele Paoloni

Sr SW Principal Engineer, Red Hat

Gabriele Paoloni is an Open Source Community Technical Leader at Red Hat. He is a passionate technologist and has strong experience in both functional safety and Linux Kernel development, including previous roles leading FuSa software architecture for Intel platforms, CCIX vice... Read More →

Monday June 23, 2025 3:35pm - 4:15pm MDT
Bluebird Ballroom 3D

Technical Documentation

Audience Experience Level Any

3:35pm MDT

Unconference

Monday June 23, 2025 3:35pm - 4:15pm MDT

Bluebird Ballroom 2H

Do you have a topic you’d like to discuss with fellow attendees? A project or idea you want to share and get feedback on? Something you'd like to teach others? Sign up to lead an Unconference session!
Sessions are informal, attendee-driven, and a great way to connect with others. There will be no AV—only a flip chart will be provided.
You can sign up in advance using this form by June 13, or onsite at the event in the Solutions Showcase - Bluebird Ballroom 1AB. Once your time slot is confirmed, it will be added to the official conference schedule so other attendees can join your session onsite.
Click here to view the Unconference schedule. Be sure to check out the topics being discussed and join us onsite for great conversations!

Monday June 23, 2025 3:35pm - 4:15pm MDT
Bluebird Ballroom 2H

Unconference Sessions

3:35pm MDT

Real-Time I/O (RTIO) for Developing Real-Time Zephyr Applications - Luis Ubieda, Croxel

Monday June 23, 2025 3:35pm - 4:15pm MDT

Bluebird Ballroom 2B

RTIO is a relatively new subsystem in Zephyr, and it enables applications to perform time-critical I/O operations.

This presentation covers:
- Basics of RTIO.
- Async vs Sync paradigms.
- In-tree examples of RTIO: Sensors and Bus drivers.
- Integration guide: how to use RTIO in your Zephyr application.
- Demo: Comparison of Sensor driver with RTIO vs without RTIO.

This presentation is for you:
- You want to learn about RTIO.
- You struggle at achieving real-time performance in Zephyr applications.
- You want to optimize performance of your existing application.

Speakers

Luis Ubieda

Lead Firmware Engineer, Croxel

Luis Ubieda is the Lead Firmware Engineer at Croxel. He is a Zephyr TSC electee and is an active Zephyr collaborator in Sensors and RTIO.

Monday June 23, 2025 3:35pm - 4:15pm MDT
Bluebird Ballroom 2B

Zephyr

Audience Experience Level Beginner

3:55pm MDT

Securing OIDC Federation in CI/CD Workflows - Billy Lynch, Chainguard

Monday June 23, 2025 3:55pm - 4:15pm MDT

Bluebird Ballroom 3B

OIDC and workload identity are fantastic ways to improve the security of CI/CD workflows. They offer a mechanism to get rid of traditional long lived keys and access tokens, with many APIs offering ways to use these tokens across environments.

However, the security of identity federation is only as strong as the policies that back them. If used incorrectly, it can be exploited to gain access to sensitive resources and potentially compromise your supply chain to use your own CI/CD platform against you.

In this talk we'll do a deep dive on OIDC and identity federation. We'll look at some of the common risks that come while using it, and strategies to help secure your environment and define strong security policies.

Speakers

Billy Lynch

Staff Software Engineer, Chainguard

Billy is a staff software engineer at Chainguard, working on developer tools and securing software supply chains for everyone! He is a contributor and maintainer to the Sigstore, Tekton, and gittuf projects, and is the creator of gitsign. Prior to working at Chainguard, Billy worked... Read More →

Monday June 23, 2025 3:55pm - 4:15pm MDT
Bluebird Ballroom 3B

cdCon

Audience Experience Level Intermediate

4:30pm MDT

How We Progressively Deliver Changes To Kubernetes Using Canary Deployments and Feature Flags - Bob Walker, Octopus Deploy

Monday June 23, 2025 4:30pm - 4:50pm MDT

Bluebird Ballroom 3B

This is the case study of how we changed how we ship software.

With thousands of customers, each in their own Kubernetes container, deploying updates was tough. Off-hours schedules meant it took over 24 hours to push a new version. If something broke, we had to scramble. Canary deployments let us update small groups of customers at a time. We built a tool to stop rollouts fast when issues appeared, limiting the damage.

In the past, new features went to everyone at once. Rolling back wasn't an option. If something failed it'd leave customers stuck in the mess. Now, using OpenFeature, we hide new functionality behind feature flags. We release features to small groups, gather feedback, and test internally for weeks. If things go wrong, we flip the flag off and move on.

This two-pronged approach lets us avoid risky big-bang releases. We went from deploying every 10 days to every 4, with fewer than 1% high-severity defects. Most of these are resolved before customers notice them.

Speakers

Bob Walker

Field CTO, Octopus Deploy

Bob Walker is a Field CTO Octopus Deploy. Bob started as a developer in the early days of .NET when web forms were the hottest new thing, and manual deployments were the norm. After one too many five-hour 2 AM Saturday deployments, he searched for any automation to stop that pain... Read More →

Monday June 23, 2025 4:30pm - 4:50pm MDT
Bluebird Ballroom 3B

cdCon

Audience Experience Level Intermediate

4:30pm MDT

Effortless Secure and Control Traffic Using Kubernetes Gateway API for Ingress, Egress and Mesh Traf - Lin Sun, solo.io

Monday June 23, 2025 4:30pm - 5:10pm MDT

Bluebird Ballroom 2F

How do you secure and control traffic for your north-south (ingress/egress) and east-west (service-to-service) traffic within your Kubernetes cluster? Do you have a unified approach for debugging, observability, and operational consistency across all traffic types?
With the growing maturity of the Kubernetes Gateway API, it’s now easier than ever to manage traffic in all directions with a unified and consistent approach. The Gateway API allows you to control and secure traffic flow without requiring application restarts, offering a seamless way to manage both ingress and egress traffic, as well as service mesh (east-west) communication.
This demo-driven session will showcase how to use the Kubernetes Gateway API to control traffic for both north-south and east-west directions. Leveraging Istio Ambient Mesh, Kgateway, and HTTP metrics, we’ll dynamically monitor application health, progressively roll out new versions, and control external API calls to optimize costs.

Speakers

Lin Sun

Head of Open-Source, solo.io

Monday June 23, 2025 4:30pm - 5:10pm MDT
Bluebird Ballroom 2F

Cloud + Containers

Audience Experience Level Beginner

4:30pm MDT

Harnessing Observability for 5G Performance: eBPF and OpenTelemetry Innovations - Fatih E. Nar & Jamie Parker, Red Hat

Monday June 23, 2025 4:30pm - 5:10pm MDT

Bluebird Ballroom 2G

This session explores the integration of eBPF and OpenTelemetry (OTel) for achieving unparalleled observability and performance in 5G networks. By leveraging the K8s Operator framework, we demonstrate the Kubernetes-native deployment of advanced observability tools, including the bpfman stack for managing eBPF programs and the OpenTelemetry Operator for scalable telemetry pipelines. Participants will gain actionable insights into optimizing 5G Cloud Native Network Functions (CNFs) through precise observability, robust performance metrics, and real-time diagnostics, while ensuring security and multi-tenancy.

Speakers

Fatih E. Nar

Distinguished Architect, Red Hat

Fatih E. NAR brings extensive experience and influence to Linux, OpenStack, and Kubernetes ecosystems. His contributions drive progressive development and foster a robust TME community. With a background at Google, Verizon Wireless, Canonical Ubuntu, and Ericsson, Fatih's diverse... Read More →

Jamie Parker

Principal Product Manager, Red Hat

Jamie Parker is a Product Manager at Red Hat who specializes in Observability, particularly in the Logging and OpenStack areas. At Red Hat, Jamie works with organizations and customers to learn about their needs within the ever changing Observability landscape, and based on their... Read More →

Monday June 23, 2025 4:30pm - 5:10pm MDT
Bluebird Ballroom 2G

Cloud + Containers

Audience Experience Level Intermediate

4:30pm MDT

How To Accelerate Software Defined Vehicle(SDV) With OSS - Yuichi Kusakabe, Honda Motor Co., Ltd.

Monday June 23, 2025 4:30pm - 5:10pm MDT

Bluebird Ballroom 2A

This presentation is the story of Honda's first in-house software development of IVI(In-Vehicle Infotainment) software.
Why Honda promotes in-house software development - Building an in-house software development team that started with two people, All development process from scratch, There is no silver bullet that will solve many problems.
However, we were able to launch this model successfully based on Honda's DNA of Waigaya, A00, and 120% quality products. The key to this is the use of AOSP(Android Open Source Project) and some OSS.
This presentation will show how a traditional automotive OEM like Honda was able to create an in-house software development team and use OSS, including AOSP. By applying OpenChain(ISO/IEC 5230) self-certification and SPDX Lite to our development process, we solved many problems and achieved a higher starting point.
However, vehicles have difficult requirements, so we will tell you the points to minimize the customization of OSS.

Speakers

Yuichi Kusakabe

Chief Architect / OSPO Tech Lead, Honda Motor Co., Ltd.

Yuichi Kusakabe is the Chief Architect at Honda Motor Co., Ltd. , AGL(Automotive Grade Linux) member and COVESA(Connected Vehicle Systems Alliance) member since 2011 with over twenty years of Automotive and Open Source Software Experience. Prior to joining Honda Motor he worked for... Read More →

Monday June 23, 2025 4:30pm - 5:10pm MDT
Bluebird Ballroom 2A

Embedded Linux Conference

Audience Experience Level Beginner

4:30pm MDT

A Deep Dive Into eBPF Program Loader - Cong Wang, Independent

Monday June 23, 2025 4:30pm - 5:10pm MDT

Bluebird Ballroom 2E

As eBPF continues to revolutionize Linux observability and networking, the complexity of its program loading mechanism has evolved significantly.

This technical deep dive unravels the sophisticated machinery behind eBPF program loading, exploring the intricate interplay between userspace loader and Linux kernel verifier. We'll dissect the eBPF program relocation mechanisms, examine the role of BTF (BPF Type Format) in enabling strong typing and verification capabilities, and analyze the complex choreography of bpf() syscalls that bridge userspace and kernel operations. Finally, we will also discuss the security implications and program signing challenges in the loading pipeline.

Speakers

Cong Wang

Linux Kernel Engineer, Self Employed

Cong Wang is a professional Linux kernel developer mainly focuses on networking and eBPF, he is also a Linux kernel maintainer for the networking traffic control subsystem. He has contributed over 1000 patches to Linux kernel.

Monday June 23, 2025 4:30pm - 5:10pm MDT
Bluebird Ballroom 2E

Linux

Audience Experience Level Intermediate

4:30pm MDT

Improve Load Balancing With Machine Learning Techniques Based on the Sched_ext Framework - Jim Huang, National Cheng Kung University

Monday June 23, 2025 4:30pm - 5:10pm MDT

Bluebird Ballroom 2D

This talk presents a method to enhance CPU scheduling by leveraging machine learning (ML) to extract the key features necessary for task migration, allowing for dynamic and stable optimization of workloads in scenarios prone to CPU imbalance. The approach is built on the sched_ext framework, which integrates eBPF to support user-defined scheduling policies within the Linux kernel.

While conventional approaches maximize CPU utilization, they often overlook contention for lower-level hardware resources, leading to performance bottlenecks -- particularly in compute-intensive servers. By using an ML-based, resource-aware load balancer, this method effectively addresses such imbalances. With sched_ext, we can collect training data and run inference on the model without modifying the kernel.

Our experiments demonstrate that, for certain workloads, this ML-driven approach can outperform EEVDF, offering notable performance gains for the CPU scheduler.

Speakers

Jim Huang

Assistant Professor, National Cheng Kung University

Monday June 23, 2025 4:30pm - 5:10pm MDT
Bluebird Ballroom 2D

Linux

Audience Experience Level Beginner

4:30pm MDT

Agents in Action: Advancing Open Source AI Missions - Hema Veeradhi, Red Hat

Monday June 23, 2025 4:30pm - 5:10pm MDT

Bluebird Ballroom 3E

AI Agents have become a buzzword in the world of generative AI—but what exactly are agents, and how are they advancing open source AI? Agents are autonomous systems that extend the capabilities of Large Language Models (LLMs) by leveraging external tools and real-time data to perform dynamic actions for solving complex, multi-step tasks. They are at the forefront of transforming open source AI by enabling adaptability, automation and more intelligent decision-making.
In this talk, we’ll explore popular open source agent frameworks like LangChain and Haystack, which are driving rapid development and community-powered innovation in AI agents. Using real-world examples and a live demo, we’ll demonstrate how these frameworks can be leveraged to build a variety of generative AI applications, including RAG, IT operations automation and dynamic, context-aware chatbots.
Attendees will gain a clear insight into why AI agents are at the forefront of innovation and how open source collaboration is driving its evolution. Whether you’re an AI developer, OSPO leader or open source enthusiast, this session will highlight the potential of agents to power the next wave of open source AI missions.

Speakers

Hema Veeradhi

Principal Data Scientist, Red Hat

Hema Veeradhi is a Principal Data Scientist working in the Emerging Technologies team part of the office of the CTO at Red Hat. Her work primarily focuses on implementing innovative open AI and machine learning solutions to help solve business and engineering problems. Hema is a staunch... Read More →

Monday June 23, 2025 4:30pm - 5:10pm MDT
Bluebird Ballroom 3E

Open AI + Data

Audience Experience Level Any

4:30pm MDT

Generative AI Model Data Pre-Training on Kubernetes: A Use Case Study - Anish Asthana, Red Hat & Mohammad Nassar, IBM

Monday June 23, 2025 4:30pm - 5:10pm MDT

Bluebird Ballroom 2C

Large Language Models (LLM) require preprocessing vast amounts of data, a process that can span days due to its complexity and scale, often involving PetaBytes of data. This talk demonstrates how Kubeflow Pipelines (KFP) simplify LLM data processing with flexibility, repeatability, and scalability. These pipelines are being used daily at IBM Research to build indemnified LLMs tailored for enterprise applications.

Different data preparation toolkits are built on Kubernetes, Rust, Slurm, or Spark. How would you choose one for your own LLM experiments or enterprise use cases and why should you consider Kubernetes and KFP?

This talk describes how open source Data Prep Toolkit leverages KFP and KubeRay for scalable pipeline orchestration, e.g. deduplication, content classification, and tokenization.

We share challenges, lessons, and insights from our experience with KFP, highlighting its applicability for diverse LLM tasks, such as data preprocessing, RAG retrieval, and model fine-tuning.

Speakers

Mohammad Nassar

Research Engineer, IBM

Mohammad Nassar, a Cloud Research Engineer at IBM Haifa, specializes in AI-driven data engineering, automation, and hybrid cloud technologies. With an M.Sc. in Computer Science from Technion, his research focused on coding theory and data systems. His work spans AI-powered data preparation... Read More →

Anish Asthana

Engineering Manager, Red Hat

Anish is an engineering manager at Red Hat in the OpenShift AI organization. He is working on making machine learning easier for the wider community by building a platform out with cloud capabilities at the core. Most recently, his interests have been focused on the Distributed Workloads... Read More →

Monday June 23, 2025 4:30pm - 5:10pm MDT
Bluebird Ballroom 2C

Open AI + Data

Audience Experience Level Intermediate

4:30pm MDT

Security Vibe Check: Which Malware Are You? - Elitsa Bankova & Jess Lowe, Google

Monday June 23, 2025 4:30pm - 5:10pm MDT

Bluebird Ballroom 3A

Okay, besties, real talk. Your code's dependencies? They're giving… chaotic energy. Like, are you even SBOMing? 💅
We've all seen the drama. log4j? xz utils? Straight-up trauma. But like, where do you land on the security spectrum? Are you accidentally downloading typosquatted packages because you're living your best, most chaotic life? Or are you a security queen, catching backdoors before they even exist? ✨
This talk is basically a giant vibe check for your security habits. We're gonna do a quick, brutal quiz – think 'are you the drama?' but for your code – and find out which iconic supply chain meltdown matches your energy.
We'll spill the tea on real-world attacks, from the 'oops, that’s a backdoor’ to the 'someone’s running Doom on Minecraft servers again' level. And we’ll give some practical advice on how to have good security posture. Stretch, queen!
If your security is giving 'main character energy' (and not in a good way), you need to be here. Let's level up our security game, avoid becoming the next trending security disaster, and maybe even get some clout for actually knowing when lockfiles actually help. 😉

TL;DR: Quiz, memes, securi-tea. 🫖 Don't be a vulnerability.

Speakers

Elitsa Bankova

Software Engineer, Google

Elitsa is a Software engineer at Google, Australia and is working on Open Source security. She has lived in over 4 countries: born in Bulgaria, she graduated from the University of Edinburgh and worked in Google Switzerland before moving down under. Outside of work, you can find her... Read More →

Jess Lowe

Software Engineer, Google

Jess is a Software Engineer in the Google Open Source Security Team working on OSV.dev and OSV-Scanner.

Monday June 23, 2025 4:30pm - 5:10pm MDT
Bluebird Ballroom 3A

Open Source 101

Audience Experience Level Any

4:30pm MDT

What Do Legislations Have To Do With Tackling Maintainer Burnout? - Ildiko Vancsa, Open Infrastructure Foundation

Monday June 23, 2025 4:30pm - 5:10pm MDT

Bluebird Ballroom 3C

Anyone who’s participated in an open source project before likely saw or experienced the challenge of having more requests coming in than people to attend to them, leading to frustrated, tired and burned out people. The latest regulatory efforts around the globe (the forming Securing OSS Act, CRA, and more), as different governments have come to the realization that their digital infrastructure undeniably depends on OSS, will put an increased pressure on the open source ecosystem. But, it doesn’t have to be like this! So, where do we go from here?

In this presentation, Ildiko will focus on two big areas: maintainer burnout and shortage and governments’ approach to open source around the globe, including legislations and regulations. With an overview of the current state of affairs, she will transition into highlighting the roles and responsibilities of the different players in the landscape, including open source foundations, communities, companies and governments, and next steps to take.

Speakers

Ildiko Vancsa

Director of Community, Open Infrastructure Foundation

As Director of Community at the OpenInfra Foundation, Ildikó is the Community Manager for the StarlingX and the Kata Containers projects, and a co-leader of the OpenInfra Edge Computing Group. Ildikó has been contributing to projects like OpenStack, Anuket and State of the Edge... Read More →

Monday June 23, 2025 4:30pm - 5:10pm MDT
Bluebird Ballroom 3C

Open Source Leadership

Audience Experience Level Intermediate

4:30pm MDT

Enhancing SBOM Generation: Filling the Gaps To Make Actionable SBOMs - Ian Dunbar-Hall, Lockheed Martin & Gary O'Neall, Source Auditor Inc.

Monday June 23, 2025 4:30pm - 5:10pm MDT

Bluebird Ballroom 3F

Most developers generating SBOMs use a tool like Syft or Trivy and yell “SHIP IT!” While this might generate an NTIA Minimum Field adherent SBOM, it often lacks information that truly makes it actionable for downstream users.

This talk covers the work of a CISA SBOM Community Tiger Team who created SBOM Generation Reference Implementations for multiple languages and scenarios. We will discuss the distinct phases of SBOM generation and highlighting how each step contributes to a more robust and actionable SBOM. By expanding the SBOM authoring process, organizations can better integrate multiple data sources, enhance metadata accuracy, and customize their workflows to align with evolving security frameworks. This approach enables tool interchangeability while maintaining data integrity and transparency.

Additionally, we will explore implementations, including the integration of SBOM generation into CI/CD pipelines using GitHub and GitLab, supporting multiple programming languages, and ensuring interoperability with both CycloneDX and SPDX formats. We will also discuss ecosystem challenges such as supplier identification, license consistency, and benchmarking completeness.

Speakers

Ian Dunbar-Hall

Open Source Program Office, Lockheed Martin

Ian is a holds the position of Chief Engineer for Lockheed Martin Software Factory and specializes in DevSecOps and full stack engineering. Additionally he is a maintainer on SBOMit and an OpenSSF Governing Board General Member Representative.

Gary O'Neall

Founder and Principal Consultant, Source Auditor Inc.

Gary is a contributor to the Software Package Data Exchange® (SPDX™) - an open standard for communicating software bill of material information, including components, licenses, copyrights, and security references. Gary has contributed several open source tools.Gary O’Neall is... Read More →

Monday June 23, 2025 4:30pm - 5:10pm MDT
Bluebird Ballroom 3F

OpenGovCon

Audience Experience Level Intermediate

4:30pm MDT

TODO Steering Committee - Management & OSPO Ask Anything - Brittany Istenes, FINOS Ambassador, ToDo Group Steering Committee; Natali Vlatko, Cisco; Georg Kunz, Ericsson; Ashley Wolf, GitHub; Stephen Augustus, Bloomberg L.P.; Annania Melaku, F5

Monday June 23, 2025 4:30pm - 5:10pm MDT

Bluebird Ballroom 3G

This Ask Anything session connects attendees to the TODO Group Steering Committee. The TODO Group is an open community of practitioners who aim to create, share knowledge and collaborate on best practices on open source management in organizations to run successful Open Source Program Offices.

Members of the steering committee will assist the audience through the best practices, guides, and tools made by and for open source managers to help them in their day-to-day responsibilities, as well as share their first-hand experiences and lessons learned in building and operating OSPOs. Additionally, attendees will learn ways to connect with the TODO Group – the largest OSPO community dedicated to building best practices in open source management. The session will also provide information on accessing OSPO mentorship in their local regions.

Speakers

Annania Melaku

Open Source Program Manager, NGINX part of F5

Annania Melaku is a Technical Program Manager on the Community Team at NGINX, where she focuses on open source strategy and community programs. With a background in software, she brings experience from industries including defense, telecom, and tech. Annania is passionate about building... Read More →

Georg Kunz

Open Source Manager, Ericsson

Georg is a passionate advocate for open source software and a long term contributor to a wide range of open source projects and communities. He currently serves on the Technical Advisory Council (TAC) and the Governing Board of the Open Source Security Foundation (OpenSSF) as well... Read More →

Ashley Wolf

Director, Open Source Programs, GitHub

Ashley Wolf is the Director of Open Source Programs at GitHub. She runs initiatives and programs to empower developers to be successful with open source. She is also passionate about helping companies participate in the open source community. Prior to joining GitHub, Ashley led the... Read More →

Stephen Augustus

Technical Architect, Office of the CTO, Bloomberg L.P.

Technical Architect, Office of the CTO at Bloomberg

Brittany Istenes

OSPO Strategist, FINOS Ambassador, ToDo Group Steering Committee Member

Brittany Istenes started off her career as an elementary school educator which then led to a path of tech. Brittany has led advisory councils, special interest groups, open source contributions, community building, InnerSource initiatives and all the gray areas in between. As a FINOS... Read More →

Natali Vlatko

Open Source Lead Architect, Cisco

Monday June 23, 2025 4:30pm - 5:10pm MDT
Bluebird Ballroom 3G

OSPOCon

Audience Experience Level Beginner

4:30pm MDT

Docs That Scale: Strategies for Sustainable Documentation in Open Source Projects. - Zainab Daodu, WriteTech Hub

Monday June 23, 2025 4:30pm - 5:10pm MDT

Bluebird Ballroom 3D

When documentation becomes outdated, projects lose contributors, support burdens increase, and adoption slows. Yet, many open-source projects struggle with maintaining accurate docs as the codebase evolves.

This session presents five proven strategies to turn documentation from a pain point into a sustainable asset:

Integrate Docs into Development: Treat docs like code, updating them alongside new features through PR workflows and docs-driven development.

Establish Governance: Assign documentation ownership with roles like a rotating "Docs Steward" and regular audits to maintain quality.

Master Versioning: Align docs with software releases, automating updates for deprecated features or breaking changes

Leverage Automation: Use tools to validate content, detect outdated material, and auto-generate sections like API docs

Build a Documentation Culture: Create a contributor-friendly environment with templates, recognition, and clear entry points for first-time contributors

Instead of theory, you'll get adaptable frameworks and real-world examples that work across any tech stack. Leave with actionable workflows that make documentation maintenance less painful and more impactful.

Speakers

Zainab Daodu

Senior Technical Writer, WriteTech Hub

Zainab Daodu is a Senior Technical Writer with a background in software engineering and DevOps, specializing in turning complex tech into clear, impactful documentation. She has worked with Google, Cisco, Tealium, Jenkins, and Wikimedia Foundation, enhancing developer experiences... Read More →

Monday June 23, 2025 4:30pm - 5:10pm MDT
Bluebird Ballroom 3D

Technical Documentation

Audience Experience Level Intermediate

4:30pm MDT

Optimizing Zephyr for Peak Performance - Jacob Beningo, Beningo Embedded Group

Monday June 23, 2025 4:30pm - 5:10pm MDT

Bluebird Ballroom 2B

The Zephyr Project is a leading open-source RTOS for resource-constrained, real-time applications. Its modularity, vendor neutrality, and rich ecosystem make it a powerful choice for embedded developers. However, achieving peak performance requires a deep understanding of Zephyr’s internals and optimization strategies.

This session explores techniques to optimize Zephyr applications for efficiency, low latency, and real-time predictability. Attendees will learn how scheduling, memory management, and interrupt handling impact performance and how to fine-tune these elements for specific workloads. We’ll cover configuring Zephyr for high-performance execution, reducing runtime overhead, and debugging bottlenecks.

Key topics include:
• Zephyr’s scheduling model and task prioritization
• Optimizing interrupts and reducing latency
• Fine-tuning memory management and resource allocation
• Profiling and debugging performance issues
• Advanced optimizations for power efficiency and I/O

Whether you’re developing for IoT, industrial automation, or real-time control, this session will equip you with practical strategies to maximize Zephyr’s performance and reliability.

Speakers

Jacob Beningo

Embedded Software Consultant, Beningo Embedded Group

Jacob Beningo helps embedded teams modernize software architecture, streamline development, and adopt best practices for high-quality, real-time systems. As founder of Beningo Embedded Group, he provides expert training and guided learning to improve code quality, accelerate development... Read More →

Monday June 23, 2025 4:30pm - 5:10pm MDT
Bluebird Ballroom 2B

Zephyr

Audience Experience Level Beginner

4:50pm MDT

Session to be Announced

Monday June 23, 2025 4:50pm - 5:10pm MDT

Bluebird Ballroom 3B

Monday June 23, 2025 4:50pm - 5:10pm MDT
Bluebird Ballroom 3B

cdCon

5:20pm MDT

Speed Networking

Monday June 23, 2025 5:20pm - 6:30pm MDT

Bluebird Ballroom Foyer (Level 1 - Terrace Level)

Join us at the speed networking event to expand your professional network while enjoying drinks and appetizers. Connect with like-minded individuals in quick, focused conversations to explore potential collaborations and opportunities. It’s a perfect opportunity to make valuable connections in a relaxed and enjoyable atmosphere.

We recommend a notepad, writing utensils, and your business cards. Don’t have business cards? Make sure you arrive early and you can snag some you can customize with your info!

Monday June 23, 2025 5:20pm - 6:30pm MDT
Bluebird Ballroom Foyer (Level 1 - Terrace Level)

Special Events / Exhibits / Breaks

5:30pm MDT

Lightning Talk: Lessons Learned From 10 Years of Automotive Grade Linux - Walt Miner, The Linux Foundation

Monday June 23, 2025 5:30pm - 5:40pm MDT

Bluebird Ballroom 3C

When software first entered the car, it was all closed source, but at the turn of the twenty-first century the complexity of software in cars exploded. Even so, OEMs and Tier Ones continued to keep their software proprietary, so much so that most Tier Ones only reluctantly gave source code to their OEM customers. With consumers now demanding the same app based experience their car that they have on their mobile phones and tablets OEMs have turned to open source software to close the gap. How did the ultra-competitive world of car manufacturers come to together to embrace Automotive Grade Linux and grow a community where Tier One suppliers, OEMs, and hobbyists can come together and build software for your next car? Walt reviews the challenges that were overcome, where we stand today, and what needs to be done to continue to grow the open source automotive community.

Speakers

Walt Miner

Senior Director, Community Manager Automotive Grade Linux, The Linux Foundation

Walt Miner is the Senior Director of Community at The Linux Foundation and has served as Community Manager for Automotive Grade Linux since 2014. Walt has spoken at numerous conferences throughout the worlds and brings over 30 years of embedded software development and management... Read More →

Monday June 23, 2025 5:30pm - 5:40pm MDT
Bluebird Ballroom 3C

Open Source Leadership

Audience Experience Level Any

5:30pm MDT

BoF: From Origins To Open Source: The Journey of DreamWorks Animation's Production Path Tracer, MoonRay - Randy Packer, DreamWorks Animation

Monday June 23, 2025 5:30pm - 6:30pm MDT

Bluebird Ballroom 3A

MoonRay is DreamWorks Animation's open-source production rendering engine, used to create memorable imagery from movies such as How to Train Your Dragon: The Hidden World, Puss in Boots: The Last Wish, The Wild Robot, the upcoming Bad Guys 2 and future titles.

We’ll talk about MoonRay’s origins as an experiment and its foundation for rendering-as-a-service in animated and non-animated content, stylized and photoreal, to its current use as the core production renderer for the feature film studio pipeline at DreamWorks Animation.

After diving into MoonRay’s use at the studio, we’ll present our path to open-sourcing MoonRay, the goals and challenges to launch that, the experiences gained since launch, what it means for DreamWorks, and where we see the potential for the open source community to embrace it and its future in animation, vfx, simulation, visualization, and more.

Speakers

Randy Packer

Sr. Manager, Production Software, DreamWorks Animation, DreamWorks Animation

Randy is sr. manager of rendering, shading and machine learning teams at DreamWorks, having started in 2015 as his first foray into the animation and the film industry. Randy's led the efforts of advancing MoonRay and it's feature set and related technologies since prior to it's usage... Read More →

Monday June 23, 2025 5:30pm - 6:30pm MDT
Bluebird Ballroom 3A

Wildcard, Open Source Leadership

Audience Experience Level Beginner

5:45pm MDT

Lightning Talk: LF Energy SEAPATH : Building an Open Source Ecosystem for the Energy Industry - Christophe Villemer, Savoir-faire Linux

Monday June 23, 2025 5:45pm - 5:55pm MDT

Bluebird Ballroom 3C

The LF Energy SEAPATH project has reached a major milestone with its V1 release in January 2025, establishing itself as the open-source reference for virtualized digital substations. Over the past five years, the project has grown into a structured, collaborative effort that bridges utilities, vendors, hardware manufacturers, and tech companies—unifying a traditionally conservative industry around open innovation. This talk will explore the SEAPATH journey: from its inception as a technical initiative to its current role as a strategic enabler of IT/OT convergence in energy systems. Attendees will gain insights into the challenges of engaging industry stakeholders, the best practices that have sustained growth, and the lessons learned in building an ecosystem where open-source principles drive real-world adoption. SEAPATH’s success is also a testament to the power of community-driven collaboration enabled by LF Energy, which has provided a neutral, trusted framework to bring together key players in the energy sector and accelerate open innovation.

Speakers

Christophe VILLEMER

Executive vice president, Savoir-faire Linux

Christophe is an engineer entrepreneur passionate about creating value through collaboration. He has been involved in open source communities for 20 years also acting as an evangelist for numerous open source projects. At Savoir-faire Linux, he drives strategic and technological partnerships... Read More →

Monday June 23, 2025 5:45pm - 5:55pm MDT
Bluebird Ballroom 3C

Open Source Leadership

Audience Experience Level Beginner

6:00pm MDT

Lightning Talk: From Fork To Foundation: The OpenSearch Journey To the Linux Foundation - Dotan Horovits, AWS

Monday June 23, 2025 6:00pm - 6:10pm MDT

Bluebird Ballroom 3C

Building and managing a successful open source project is no small feat, especially when it begins as a fork born out of the need to preserve openness. OpenSearch started as a response to the relicensing of Elasticsearch and Kibana, and over the years, it has grown into a vibrant, community-driven ecosystem. This year’s milestone of joining The Linux Foundation highlights the project’s commitment to open governance, collaboration, and long-term sustainability.

In this session, we’ll share the lessons learned from OpenSearch’s journey, exploring the strategies behind building a healthy, scalable, and inclusive open source community. From establishing clear governance models to fostering innovation with features like vector search and AI-powered capabilities, we’ll provide actionable insights for maintaining momentum and trust in open source projects.

Whether you’re starting a new open source initiative or managing an existing one, this talk offers a practical guide to navigating challenges, ensuring community alignment, and achieving long-term impact—just as OpenSearch has done.

Speakers

Dotan Horovits

Sr. Developer Advocate for OpenSearch, AWS

Horovits is an international speaker and thought leader, as well as a CNCF Ambassador, and host of the popular OpenObservability Talks podcast. With over 20 years in the tech industry he brings a wealth of knowledge in cloud and cloud-native solutions, DevOps practices and more... Read More →

Monday June 23, 2025 6:00pm - 6:10pm MDT
Bluebird Ballroom 3C

Open Source Leadership

Audience Experience Level Intermediate

8:00am MDT

Continental Breakfast

Tuesday June 24, 2025 8:00am - 9:00am MDT

Bluebird Ballroom Foyer (Level 1 - Terrace Level)

Tuesday June 24, 2025 8:00am - 9:00am MDT
Bluebird Ballroom Foyer (Level 1 - Terrace Level)

Special Events / Exhibits / Breaks

8:00am MDT

Registration & Badge Pick-Up

Tuesday June 24, 2025 8:00am - 5:00pm MDT

Bluebird Ballroom Foyer (Level 1 - Terrace Level)

Tuesday June 24, 2025 8:00am - 5:00pm MDT
Bluebird Ballroom Foyer (Level 1 - Terrace Level)

Special Events / Exhibits / Breaks

8:00am MDT

Zen Zone

Tuesday June 24, 2025 8:00am - 5:00pm MDT

712 Meeting Room (Level 3 - Street Level)

Tuesday June 24, 2025 8:00am - 5:00pm MDT
712 Meeting Room (Level 3 - Street Level)

Special Events / Exhibits / Breaks

8:00am MDT

Hacker Space

Tuesday June 24, 2025 8:00am - 6:30pm MDT

Bluebird Ballroom Foyer - Space behind the escalators

Tuesday June 24, 2025 8:00am - 6:30pm MDT
Bluebird Ballroom Foyer - Space behind the escalators

Special Events / Exhibits / Breaks

8:00am MDT

Coat & Bag Check

Tuesday June 24, 2025 8:00am - 6:45pm MDT

607 Meeting Room (Level 3 - Street Level)

Tuesday June 24, 2025 8:00am - 6:45pm MDT
607 Meeting Room (Level 3 - Street Level)

Special Events / Exhibits / Breaks

9:00am MDT

Debugging USB Type-C Power Delivery: Beauty and the Beast - Marcel Ziswiler, Codethink Ltd.

Tuesday June 24, 2025 9:00am - 9:40am MDT

Bluebird Ballroom 2A

While working with the RADXA ROCK 5B, a low-cost/high-performance RK3588 aarch64-based development board, we discovered that it is picky concerning the used USB Type-C power source. What was rather strange is that while it worked on our upstream Linux kernel (at the time of writing v6.13.1) based Embedded Linux system, it just boot-looped running RADXA's Debian (using a Rockchip downstream v6.1 based kernel). At the same time, my colleagues were working on the Testing in a Box version 2 (TIABv2) integrating USB Type-C power delivery which we plan to use in our board farm once ready. Of course, as soon as they had prototypes I gave it a try and it also showed the problem. By chance, both sides are using the exact same onsemi FUSB302B programmable USB Type-C controller with power delivery. The TIABv2 one is configured as a power source and the ROCK 5B one is configured as a power sink. This talk introduces the USB Type-C power delivery topic and then discusses how we joined forces and debugged both sides, at times giving the ball to the TIABv2 firmware, at other times to the Linux kernel fusb302 driver and back and forth again.

Speakers

Marcel Ziswiler

Senior Software Engineer, Codethink Ltd.

In 2024 Marcel Ziswiler joined Codethink. Before, he spearheaded Toradex' Embedded Linux adoption. His intro of an upstream first policy led to being a top 10 U-Boot as well as Linux kernel Arm SoC contributor. He has broad experience in designing real-time and mobile applications... Read More →

Tuesday June 24, 2025 9:00am - 9:40am MDT
Bluebird Ballroom 2A

Embedded Linux Conference

Audience Experience Level Any

9:00am MDT

Efficient On-Device Core Dump Processing for IoT: A Rusty Implementation - Blake Hildebrand, Memfault

Tuesday June 24, 2025 9:00am - 9:40am MDT

Bluebird Ballroom 2B

Embedded Linux devices operate in constrained environments with limited storage, bandwidth, and connectivity. Traditional core dumps can be quite large, making it impractical for some of the more constrained embedded systems. Over the past year, we’ve tackled this challenge head-on—optimizing Linux core dumps directly on the device to reduce size, protect privacy, and enable better debugging for IoT developers.

What We’ll Cover:
Inside ELF Core Dumps – A look at the ELF structure and how it applies to core dumps.

On-Device Optimization – How we reduced core dump size by capturing only the first N bytes of each stack, minimizing storage and bandwidth impact.

Privacy-Preserving Debugging – How our custom built (in Rust!) on-device stack unwinder hooks into the core handler, and reduces a coredump to a set of PCs per frame to save space and prevent potential PII from leaking.

Scaling to Millions of Coredumps – Lessons learned from parsing an unprecedented volume of core dumps with Rust.

Speakers

Blake Hildebrand

Software Engineer, Memfault

Blake has been using Linux since installing Ubuntu Breezy on his dad’s old office PC. Since then, he’s worked on everything from smartwatches to large-scale web services. As a Software Engineer at Memfault, he focuses on improving device reliability and performance. Previously... Read More →

Tuesday June 24, 2025 9:00am - 9:40am MDT
Bluebird Ballroom 2B

Embedded Linux Conference

Audience Experience Level Any

9:00am MDT

Keynotes to be Announced

Tuesday June 24, 2025 9:00am - 10:30am MDT

Bluebird Ballroom 1C (Level 1 - Terrace Level)

Tuesday June 24, 2025 9:00am - 10:30am MDT
Bluebird Ballroom 1C (Level 1 - Terrace Level)

Keynote Sessions

9:50am MDT

Regression Testing Boot-time Performance in the Linux Kernel - Tim Bird, Sony

Tuesday June 24, 2025 9:50am - 10:30am MDT

Bluebird Ballroom 2B

There are numerous tools to measure boot-time performance of Linux. However, there is no standard regression test of boot performance for Linux. This is due to a number of factors, including disparities in system performance, different requirements for quickly-needed functionality, and differences in bootloader, kernel and user-space configuration. In this session Tim will present a boot-time regression test that utilizes a collection of reference value data files for different platforms, kernel versions and configurations. A meta-data matching system is used to select an appropriate reference data file. Boot time data (including initcall durations, and the durations of pre-selected boot operations) is compared with reference values, in order to report regressions in boot-time duration for specific elements of the boot sequence. The upstream status of this effort, along with the test and supporting tools, as well as issues found with this approach, will be discussed.

Speakers

Tim Bird

Principal Software Engineer, Sony

Tim Bird is a Principal Software Engineer for Sony Corporation, where he helps Sony use Linux and other open source software in their products. Tim is the organizer of the Linux Boot-Time Special Interest Group and is involved with various Linux Foundation projects (including being... Read More →

Tuesday June 24, 2025 9:50am - 10:30am MDT
Bluebird Ballroom 2B

Embedded Linux Conference

Audience Experience Level Intermediate

9:50am MDT

Skip the Wait: Maximizing SPI Throughput in the Linux Kernel With SPI Offloading - David Lechner, BayLibre

Tuesday June 24, 2025 9:50am - 10:30am MDT

Bluebird Ballroom 2A

SPI offloading is a new feature slated to land in the 6.15 kernel. Come learn what it is and what it can be used for.

“Offloading” is a generic term that refers to using additional hardware connected to a SPI controller to handle tasks traditionally done in software, like initiating a SPI transfer and handling an interrupt when the transfer is complete. Having these functions offloaded to hardware is useful for applications like high speed data acquisition (think 1 million samples per second for an ADC) or to meet latency requirements (think CAN bus controller).

In this session, we will cover the thought process that went into designing an interface that can handle these varied applications and the solution we arrived at. We will also take a side trip to discuss hardware triggers that can be used as part of the SPI offload functionality and how they could potentially become a standalone subsystem for generic hardware triggers. Then we will take a look at how we put it all together in a real ADC driver to get 2.5 million samples per second. Finally, we will cover other potential use cases for SPI offloading and how one could go about adding support for these.

Speakers

David Lechner

Sr. Software Engineer, BayLibre

David Lechner is an embedded software engineer at BayLibre. He has been working with embedded Linux systems since 2013 and is the kernel maintainer for LEGO MINDSTORMS EV3 among other things. He also has a background in electrical engineering and industrial automation.

Tuesday June 24, 2025 9:50am - 10:30am MDT
Bluebird Ballroom 2A

Embedded Linux Conference

Audience Experience Level Intermediate

10:30am MDT

Coffee Break

Tuesday June 24, 2025 10:30am - 11:00am MDT

Solutions Showcase - Bluebird Ballroom 1AB

Tuesday June 24, 2025 10:30am - 11:00am MDT
Solutions Showcase - Bluebird Ballroom 1AB

Special Events / Exhibits / Breaks

10:30am MDT

Solutions Showcase

Tuesday June 24, 2025 10:30am - 6:30pm MDT

Solutions Showcase - Bluebird Ballroom 1AB

Tuesday June 24, 2025 10:30am - 6:30pm MDT
Solutions Showcase - Bluebird Ballroom 1AB

Special Events / Exhibits / Breaks

11:00am MDT

Unleashing the Power of Mutation Testing: Supercharging Software Quality and Resilience - Emma Taylor, SciTec

Tuesday June 24, 2025 11:00am - 11:20am MDT

Bluebird Ballroom 3B

Mutation testing is a powerful technique used to assess the effectiveness of software tests by introducing small, deliberate changes (mutations) to the codebase. These mutations simulate common coding errors, offering a robust way to evaluate how well existing test suites can detect potential faults. This talk will explore the principles behind mutation testing, its applications in real-world development cycles, and its potential to uncover gaps in test coverage that traditional testing methods may miss. Attendees will learn about the core concepts, tools, and strategies for integrating mutation testing into CI/CD workflow, as well as the challenges and best practices for maximizing its benefits. Whether you’re looking to improve the robustness of your tests or dive deeper into software quality assurance, this session will provide valuable insights into how mutation testing can take your software’s reliability to the next level.

Speakers

Emma Taylor

Software Engineer, SciTec

Emma Taylor is a Full-Stack Developer with a BS in Computer Science and Electrical Engineering, specializing in scalable, high-performance systems. Skilled in Java, C/C++, Docker, and microservices, she uses mutation testing to enhance code quality and identify test coverage gaps... Read More →

Tuesday June 24, 2025 11:00am - 11:20am MDT
Bluebird Ballroom 3B

cdCon

Audience Experience Level Beginner

11:00am MDT

Standards and Specifications at the Linux Foundation - Jory Burson, The Linux Foundation

Tuesday June 24, 2025 11:00am - 11:20am MDT

Bluebird Ballroom 3D

Speakers

Jory Burson

VP of Standards, Linux Foundation

Jory Burson is the VP of Standards for the Linux Foundation, where she helps projects identify opportunities for standardization and collaborate on specifications. She is an open source developer-turned-standards practitioner, who is passionate about bringing the best of open source... Read More →

Tuesday June 24, 2025 11:00am - 11:20am MDT
Bluebird Ballroom 3D

Standards + Specifications

11:00am MDT

Bring the Power of Wireshark To Syscalls and Logs With Stratoshark - Gerald Combs, Sysdig, Wireshark Foundation

Tuesday June 24, 2025 11:00am - 11:40am MDT

Bluebird Ballroom 2F

Stratoshark is a powerful system call and log analyzer built on Wireshark's ubiquitous exploration, drill-down, and analysis capabilities. It is enriched with data sources from the libraries of the open source detection engine Falco, the standard for cloud-native threat detection. Stratoshark enables deep analysis and troubleshooting across Linux servers, Kubernetes clusters, and any system that generates Linux system calls or real-time log events. But fear not, Stratoshark maintains Wireshark’s classic, intuitive interface.

In this talk, Gerald Combs, the creator of Wireshark and co-creator of Stratoshark, will provide an update on the project since its announcement in January and showcase a live demo of Stratoshark, including how it extends the familiar Wireshark user experience to system calls and AWS audit events. Learn how Stratoshark builds on a legacy of open source innovation to broaden and modernize Wireshark’s range of use cases into cloud-native computing.

Speakers

Gerald Combs

Director of Open Source Projects, Sysdig, Wireshark Foundation

Gerald has the great fortune of working with fantastic open source teams as part of Wireshark's leadership and at Sysdig.

Tuesday June 24, 2025 11:00am - 11:40am MDT
Bluebird Ballroom 2F

Cloud + Containers

Audience Experience Level Intermediate

11:00am MDT

Towards Confidential AI for the Masses! - Julian Stephen & Michael Le, IBM

Tuesday June 24, 2025 11:00am - 11:40am MDT

Bluebird Ballroom 2G

Confidential AI leveraging GPUs can bring AI to the masses without sacrificing the privacy of end users. Individual open source technologies already exist to configure, deploy, and manage confidential TEEs. However, clobbering a multitude of components into a coherent, secure, and efficient solution is challenging with many pitfalls. For example, depending on use cases and involved parties (cloud/model/service owners), attestation and key management methodology can vary drastically. In addition, for TEEs with confidential GPUs, complexity extends to increased load times, affecting services that serve multiple models.

This talk will go through key components and design decisions needed to enable confidential AI. Specifically: i) implications of different trust models on the solution and (ii) performance tradeoff considerations. To concretize the discussion, we will present a detailed end-to-end 'how to', for deploying an inference service on Nvidia H100 GPUs and AMD-based TEE with a focus on protecting the model and the user input. The audience will be able to appreciate why there can be no one size fit all confidential AI solution and understand what design works for them.

Speakers

Julian James Stephen

Research Scientist, IBM

Julian Stephen is a research scientist in the security group at IBM T. J. Watson Research Center, NY. He is interested in building systems and models that solve real world problems without compromising security and privacy of data. He received his Ph.D. in Computer Science from... Read More →

Michael Le

Security Researcher, IBM

Michael is currently a research staff member at the IBM T. J. Watson Research Center. His general research interest is in systems security with a focus on containers, virtualization, operating systems, and confidential computing. He enjoys long hacks in the kernel.

Tuesday June 24, 2025 11:00am - 11:40am MDT
Bluebird Ballroom 2G

Cloud + Containers

Audience Experience Level Intermediate

11:00am MDT

Improving Linux Boot Time for Automotive Use Cases - Brian Masney & Eric Chanudet, Red Hat

Tuesday June 24, 2025 11:00am - 11:40am MDT

Bluebird Ballroom 2B

We will describe in this session a variety of strategies and
techniques that were used to optimize the boot up time of the Linux kernel, initramfs, and systemd for Red Hat In Vehicle Operating System. The unreported time before the kernel timer is initialized will be described, and how to measure this on an aarch64 system. Some of the techniques include changes that are specific to the realtime (RT) kernel, such as temporarily tuning RCU on boot up. We’ll also cover how a new project called autoinit was used in the initramfs with systemd to replace udev. Some kernel patch sets that have been merged upstream that help the overall kernel boot speed will also be described.

Speakers

Brian Masney

Principal Software Engineer, Red Hat

Brian Masney has been a contributor and user of Linux and open source projects since 1996. He has 25 years of commercial experience, and has worked professionally on large distributed backend systems in userspace, automated large infrastructure in the cloud and data center, and is... Read More →

Eric Chanudet

Principal Software Engineer, Red Hat, Inc

I joined the Red Hat Automotive Kernel team in 2021 and worked on improving boot time to match the requirement of the Red Hat In Vehicle OS kernel as well as helped enable and support arm64 platforms for it.

Tuesday June 24, 2025 11:00am - 11:40am MDT
Bluebird Ballroom 2B

Embedded Linux Conference

Audience Experience Level Any

11:00am MDT

Sensor Data Acquisition With Linux's IIO Subsystem and Libiio - Robin Getz, MathWorks

Tuesday June 24, 2025 11:00am - 11:40am MDT

Bluebird Ballroom 2A

This presentation showcases optimizing sensor data acquisition for embedded systems using the Linux IIO subsystem and libiio, with a special focus on developing algorithms on the host to capture data from remote hardware. The IIO subsystem offers a versatile framework for interfacing with sensors like ADCs, DACs, and IMUs, streamlining the management of diverse data streams. With libiio, developers can capture data from remote devices efficiently, simplifying integration and allowing for sophisticated data processing in user-space applications. We explore the architecture of the IIO subsystem, highlighting its modular design that enhances scalability and adaptability in embedded settings. The paper also covers practical methods for configuring and optimizing IIO drivers to improve performance and reliability. Real-world examples with Raspberry Pi demonstrate how libiio supports the rapid prototyping and deployment of sensor applications, with an emphasis on developing algorithms on the host. Attendees will learn best practices for creating high-performance data acquisition systems that ensure seamless integration and efficient resource use across distributed systems.

Speakers

Robin Getz

Senior Engineering Manager, MathWorks

Director of System Engineering with 20+ years in embedded systems. Skilled in management, product development, and systems architecture. Passionate about sensors, data acquisition, and SOC designs. I focus on innovation, and delivering quality user experiences.

Tuesday June 24, 2025 11:00am - 11:40am MDT
Bluebird Ballroom 2A

Embedded Linux Conference

Audience Experience Level Intermediate

11:00am MDT

Six Years of Empowering Open Source Communities - Shuah Khan, The Linux Foundation

Tuesday June 24, 2025 11:00am - 11:40am MDT

Bluebird Ballroom 3G

Growing new talent and attracting new developers is challenging for open source communities. Yet, it is vital to reach out to train the next generation of developers to keep the open source communities healthy and sustainable.

Equitable access to learning resources is a barrier for a significant number of new developers. It isn't easy for new developers to get a start in open source, connect with open source communities and contribute to them. It is equally challenging for employers to find new developers to add to their technical projects.

Shuah Khan will talk about Linux Foundation's six year journey to provide learning resources for new open source developers, opportunities to experts in open source communities to train and mentor the next generation, and make newly trained talent available to prospective employers.

Speakers

Shuah Khan

Kernel Maintainer & Linux Fellow, The Linux Foundation

Shuah Khan is a Kernel Maintainer & Linux Fellow at The Linux Foundation. She is an experienced Linux Kernel developer, maintainer, and contributor. She authored, A Beginner’s Guide to Linux Kernel Development (LFD103) training course. She designed and leads the Mentorship program... Read More →

Tuesday June 24, 2025 11:00am - 11:40am MDT
Bluebird Ballroom 3G

Equity + Inclusion + Accessibility

11:00am MDT

Three Decades in Kernelland - Jonathan Corbet, LWN.net

Tuesday June 24, 2025 11:00am - 11:40am MDT

Bluebird Ballroom 2D

The Linux kernel project has been going for well over 30 years. From its beginnings on floppy diskettes and beige boxes through to its current home in pockets and unseen data centers, the kernel project has been a constant exercise in rapid development and adaptation. I have been present for almost all of the kernel project's history as an observer, contributor, maintainer, and more; all that experience will be boiled down into a fast-moving tour of how the kernel got to where it is, what makes it successful, and what may be coming next.

Speakers

Jonathan Corbet

Executive editor, LWN.net

Jonathan Corbet is the kernel documentation maintainer, co-founder of LWN.net (and the author of its Kernel Page), a member of the Linux Foundation's Technical Advisory Board, and the lead author of Linux Device Drivers, Third Edition. He lives in Boulder, Colorado, USA.

Tuesday June 24, 2025 11:00am - 11:40am MDT
Bluebird Ballroom 2D

Linux

Audience Experience Level Intermediate

11:00am MDT

Open AI (Two Words): The Only Path Forward for AI - Matt White, Linux Foundation

Tuesday June 24, 2025 11:00am - 11:40am MDT

Bluebird Ballroom 3E

The exponential growth in artificial intelligence capabilities has been fundamentally driven by open science and collaborative research. From the publication of the "Attention Is All You Need" paper that introduced the Transformer architecture to OpenAI's strategic release of GPT-2, openness has repeatedly catalyzed breakthrough innovations while enabling crucial public discourse around AI's implications.

This talk presents a compelling case for why open source development is not just beneficial but essential for the future of safe and equitable AI. We'll examine how the open-source ecosystem has democratized access to AI technology, enabled transparency and innovation, and fostered a global community of researchers working to ensure AI systems are robust and aligned with human values.

Through concrete examples, we'll demonstrate how open-source initiatives have already begun addressing critical challenges in AI development. The Model Openness Framework has established clear standards for transparency, while the pioneering OpenMDW license has created a legal framework for responsible sharing of AI artifacts.

Speakers

Matt White

GM of AI, Executive Director, PyTorch, Linux Foundation

Matt White is the Executive Director of the PyTorch Foundation and GM of AI at the Linux Foundation. He is also the Director of the Generative AI Commons. Matt has nearly 30 years of experience in applied research and standards in AI and data in telecom, media and gaming industries... Read More →

Tuesday June 24, 2025 11:00am - 11:40am MDT
Bluebird Ballroom 3E

Open AI + Data

Audience Experience Level Intermediate

11:00am MDT

Breaking and Fixing the Kernel: Crashes, Debugging & Performance Tuning - Hardik Garg & Thomas Ballasi, Microsoft

Tuesday June 24, 2025 11:00am - 11:40am MDT

Bluebird Ballroom 3A

Debugging Linux kernel crashes is a fundamental skill for developers working in kernel development. In this session, we’ll dive into four of the most common crash types—null pointer dereference, stack overflow, use-after-free, and divide-by-zero. Using real-world examples from an Azure Linux VM, we’ll analyze dmesg logs, walk through kernel crash reports, and demonstrate how to effectively debug these issues using tools like gdb and KASAN.
Beyond debugging, we’ll explore the performance impact of kernel configurations. Specifically, we’ll examine how kernel command-line parameters influence performance, using the SRSO mitigation as a case study. This session will provide practical insights into debugging crashes and optimizing kernel performance, helping developers strike a balance between stability, security, and efficiency in real-world deployments.

Speakers

Hardik Garg

Software Engineer, Microsoft

I work with the Linux Systems Group at Microsoft, focusing on maintaining the LCOW kernel and supporting hardware bring-up with Maintenance Operating Systems (MOS). I maintain the kernel build, test, and release pipeline, optimizing kernel performance across different hardware platforms... Read More →

Thomas Ballasi

Software Engineer (Linux Systems Group), Microsoft

Thomas Ballasi is a software engineer specializing in embedded Linux development. As a member of the Linux Systems Group at Microsoft, he contributes to advancing Linux on ARM64 platforms. With multiple years of experience, Thomas has worked extensively with Yocto, Buildroot, and... Read More →

Tuesday June 24, 2025 11:00am - 11:40am MDT
Bluebird Ballroom 3A

Open Source 101

Audience Experience Level Beginner

11:00am MDT

Funding Security in Open Source: Insights From FreeBSD’s Audit Journey - Deb Goodkin, FreeBSD Foundation & Michael Winser, Alpha-Omega

Tuesday June 24, 2025 11:00am - 11:40am MDT

Bluebird Ballroom 3C

Funding a security initiative can be a game-changer for open source projects, but what does it really take to make it successful?

In this talk, we’ll share insights from a funded security audit in FreeBSD—how we secured support, scoped the work, engaged the community, and navigated challenges. You’ll learn how to evaluate if funding is right for your project, what to expect from the process, and how to collaborate effectively with sponsors.

Whether you're considering funding for security, sustainability, or growth, this session will equip you with practical takeaways to make it a success.

Speakers

Deb Goodkin

Executive Director, FreeBSD Foundation

Deb is the Executive Director of the FreeBSD Foundation, joining as the first employee back in August 2005. Before venturing into the world of open source and operating systems, she spent two decades working as an embedded firmware engineer, technical marketer, and technical sales... Read More →

Michael Winser

Technical Strategist, Alpha-Omega

Michael is a 40 year veteran in the software industry, with over 25 of those years at Google and Microsoft. He co-founded Alpha-Omega while at Google. Michael is an industry expert in software supply chain security, software development, and developer ecosystems. In addition to Alpha-Omega... Read More →

Tuesday June 24, 2025 11:00am - 11:40am MDT
Bluebird Ballroom 3C

Open Source Leadership

Audience Experience Level Beginner

11:00am MDT

Recipe for Discovery: Building the UC Open Source Repository Browser From Scratch - Juanita Gomez, University of California, Santa Cruz

Tuesday June 24, 2025 11:00am - 11:40am MDT

Bluebird Ballroom 3F

The University of California’s network of Open Source Program Offices (OSPOs) launched last year, bringing together six campuses (UC Santa Cruz, Berkeley, Davis, Los Angeles, Santa Barbara, and San Diego) to support open source research, promote sustainability, and establish best practices within academic environments.
A key challenge in this effort is identifying and connecting open source projects across the system. Despite UC’s significant contributions to open source, there is no centralized way to track these efforts, making it difficult for researchers to find relevant projects, for institutions to assess impact, and for the broader community to engage with UC’s open source work.
To address this, the UC OSPO Network is developing the UC Open Source Repository Browser (UC ORB), a discovery tool designed to map and classify UC’s open source projects.
This talk will explore the process of building the UC ORB, from leveraging the GitHub API for data collection to integrating automated discovery with targeted outreach to the academic community. We will discuss the challenges of repository identification, compare similar approaches, and share lessons learned throughout the process.

Speakers

Juanita Gomez

PhD Candidate, University of California, Santa Cruz

Juanita Gomez is a Ph.D. candidate in Computer Science at UC Santa Cruz, where her research focuses on improving the security of scientific open source software in collaboration with the Open Source Program Office (OSPO) at UCSC. She is a passionate programmer, mathematician, and... Read More →

Tuesday June 24, 2025 11:00am - 11:40am MDT
Bluebird Ballroom 3F

OSPOCon

Audience Experience Level Any

11:00am MDT

Unconference

Tuesday June 24, 2025 11:00am - 11:40am MDT

Bluebird Ballroom 2H

Do you have a topic you’d like to discuss with fellow attendees? A project or idea you want to share and get feedback on? Something you'd like to teach others? Sign up to lead an Unconference session!
Sessions are informal, attendee-driven, and a great way to connect with others. There will be no AV—only a flip chart will be provided.
You can sign up in advance using this form by June 13, or onsite at the event in the Solutions Showcase - Bluebird Ballroom 1AB. Once your time slot is confirmed, it will be added to the official conference schedule so other attendees can join your session onsite.
Click here to view the Unconference schedule. Be sure to check out the topics being discussed and join us onsite for great conversations!

Tuesday June 24, 2025 11:00am - 11:40am MDT
Bluebird Ballroom 2H

Unconference Sessions

11:00am MDT

Panel Discussion: The Technical Talent Market in 2025: Fortifying for AI, Cybersecurity, and Regulatory Compliance - Anna Hermansen, Clyde Seepersad & Adrienn Lawson, The Linux Foundation & Christopher Robinson, OpenSSF

Tuesday June 24, 2025 11:00am - 11:40am MDT

Bluebird Ballroom 2E

For the past three years, LF Education has partnered with LF Research to produce a yearly State of Tech Talent report surveying hiring and training managers to capture trends in the IT talent market. The 2025 study, which will go live at Open Source Summit North America, explores AI’s impact on organizational operations and developers; the fastest-growing areas of job responsibility; and compliance shifts from policies like the Cyber Resilience Act. In this session, the LF Research team will host a discussion of this year’s study findings, with panelists from LF Education and OpenSSF sharing their expertise on hiring and training to address cybersecurity concerns, regulatory compliance, AI, and more. In discussing the findings of the study, this session will describe how the community is grappling with resourcing amidst the new and shifting priorities in this landscape, from AI to Cybersecurity to platform engineering. The session will deliver insight on how the open source community can take the findings of the study to fortify its organizations and people for the market in 2025 and beyond and maintain relevance among economic, regulatory, and technological changes.

Speakers

Adrienn Lawson

Director of Quantitative Research, The Linux Foundation

Adrienn serves as Director of Quantitative Research at the Linux Foundation, where she leads data-driven initiatives to understand open source ecosystems. With expertise in social data science from the University of Oxford and a background spanning academic and governmental research... Read More →

Christopher "CRob" Robinson

Security Lorax, OpenSSF

Christopher Robinson (aka CRob) is the Chief Security Architect for the Open Source Security Foundation. With over 25 years of Enterprise-class engineering, architectural, operational and leadership experience, CRob has worked at several Fortune 500 companies with experience in the... Read More →

Anna Hermansen

Researcher and Ecosystem Manager, The Linux Foundation

Anna is the Ecosystem Manager for LF Research where she supports end-to-end management of the department's research projects. She has conducted qualitative and systematic review research on the integration of technologies to better support health data sharing. Her interests lie at... Read More →

Clyde Seepersad

SVP, The Linux Foundation

LF exec in leading the education team

Tuesday June 24, 2025 11:00am - 11:40am MDT
Bluebird Ballroom 2E

Wildcard, Open Source Leadership

Audience Experience Level Any

11:00am MDT

Edge AI and MLOPs Practices for Zephyr - Eoin Jordan, Edge Impulse / University of Galway

Tuesday June 24, 2025 11:00am - 11:40am MDT

Bluebird Ballroom 2C

In this presentation, Eoin will introduce a practical approach to Edge MLOps for microcontroller-based systems using the Zephyr RTOS. Edge MLOps unifies DevOps, ML model development, and edge deployment practices to streamline the entire AI lifecycle at the device level—from data collection and processing to model training, deployment, and continuous monitoring.

Attendees will learn how to implement version control for data and models, design automated CI/CD pipelines that handle real-world sensor data, and manage over-the-air (OTA) firmware updates on constrained Zephyr-based devices. We will explore best practices to ensure data integrity, model governance, and security throughout the pipeline, including techniques to mitigate model drift and bias.

Through a demonstration of an end-to-end IoT architecture, participants will see how edge devices can continuously collect new data, trigger remote training in the cloud, and deploy updated ML models back to the field. The talk will also highlight how Git action-based workflows enable seamless version transitions for on-device inference, showing how TFLite Micro or other open-source models —can be integrated platform-agnostic.

Speakers

Eoin Jordan

Developer Relations / PhD Student, Edge Impulse / University of Galway

Eoin Jordan works for Edge Impulse as part of the Developer Relations team, boasting over 14 years of experience in Networking, Cloud, Edge, and IoT technologies. He is passionate about Edge Intelligence, actively pursuing a Ph.D. on the subject, and educating the community on this... Read More →

Tuesday June 24, 2025 11:00am - 11:40am MDT
Bluebird Ballroom 2C

Zephyr

Audience Experience Level Intermediate

11:20am MDT

CD Demands Continuous Testing: Why We Built a Testing Platform Layer on ECS Using Spinnaker - Jaime G. O'Byrne, JPMorgan Chase and Co

Tuesday June 24, 2025 11:20am - 11:40am MDT

Bluebird Ballroom 3B

Functional tests are not just an idealist luxury – at JPMorgan, they’re compulsory. Since designating Spinnaker as the strategic deployment tool for all public cloud deployments, users who were able to easily run tests using closures in our firm’s Jenkins offering were now finding themselves without a run-context. Where are your tests supposed to run when your deployment tool is now a distributed system?
From “bring your own environment” to “we will run all the firm’s tests on our infrastructure” - this talk will walk through some of the challenges, design decisions, tradeoffs, and general wrangling of complexity that comes from operating a distributed system like Spinnaker, in a highly regulated environment to support continuous testing on the cloud.

Speakers

Jaime OByrne

Senior Associate Software Engineer, JPMorgan Chase and Co

Salvadoran immigrant, Husband, Father of two. Early-Mid career Software Engineer and enthusiast of all things CD and automation.

Tuesday June 24, 2025 11:20am - 11:40am MDT
Bluebird Ballroom 3B

cdCon

Audience Experience Level Intermediate

11:55am MDT

Who Are You Building For: Pipelines Have a Purpose - Andrew McNamara & Julen Landa Alustiza, Red Hat

Tuesday June 24, 2025 11:55am - 12:15pm MDT

Bluebird Ballroom 3B

Software is built for a purpose. The same property applies to build platforms!

We will show you how we are leveraging Tekton and Tekton Chains at Red Hat to create a build platform that meets developers where they are at. Developers start with the pipeline defined in their git repository – free for them to modify and update on their terms, with Tekton tasks ready to scan artifacts for vulnerabilities and Renovate pre-configured to help keep dependencies up to date.

This platform helps make sure that the artifacts are going somewhere. Using the detailed SLSA Provenance generated by Tekton Chains, the build platform enables policy driven development. Developers can see in their PRs whether they are on track to meet the target’s requirements – whether it is pushing to a development or production environment. Gone are the days saying “I didn’t know I had to do that!”

We won’t send the artifacts just anywhere, however, as we can tailor policies to ensure that you are meeting all of the requirements. The platform can inspect the provenance to ensure that artifacts are built using trusted steps and all required checks are good for takeoff!

Speakers

Andrew McNamara

Engineer, Red Hat

Andrew McNamara is passionate about usable CI/CD, security, and DevSecOps, drawing from his experience of building and shipping containerized software at IBM and Red Hat. As a SLSA maintainer, Andrew is helping people identify how to approach and understand supply chain security... Read More →

Julen Landa Alustiza

Ansible Delivery Pipelines Architect, Red Hat

I am an Open Source enthusiast currently working for Red Hat as Ansible Delivery Pipelines techincal lead.

Tuesday June 24, 2025 11:55am - 12:15pm MDT
Bluebird Ballroom 3B

cdCon

Audience Experience Level Beginner

11:55am MDT

Security, Privacy & Authenticity on the Web - Daniel Appelquist, Samsung

Tuesday June 24, 2025 11:55am - 12:15pm MDT

Bluebird Ballroom 3D

In an era of growing concerns over misinformation, surveillance, and data breaches, building a more secure, private, and authentic web has never been more critical.

In this talk, I'll explore the current state of web security, privacy, and authenticity, focusing on key efforts shaping the future of the open web. You'll hear about the latest work in W3C, including advancements in privacy principles, ethical web guidelines, web developer security guidelines, all aimed at creating a more secure, trustworthy, and user-centric web. You'll also learn about how emerging standards like Content Credentials (C2PA) may revolutionise the way we verify the authenticity of digital content, helping to combat misinformation and ensure transparency in the information we consume online.

Speakers

Daniel Appelquist

Open Source Strategist, Samsung

Dan Appelquist is Open Source Strategist at Samsung Open Source Group. He is a web & mobile industry veteran and long-time participant and leader in open source and open standards. He is co-chair of the W3C Technical Architecture Group and is Co-Chair of OpenSSF's Global Cybersecurity... Read More →

Tuesday June 24, 2025 11:55am - 12:15pm MDT
Bluebird Ballroom 3D

Standards + Specifications

Audience Experience Level Intermediate

11:55am MDT

Cross-cloud App Splitting With WebAssembly Components - Matt Butcher, Fermyon

Tuesday June 24, 2025 11:55am - 12:35pm MDT

Bluebird Ballroom 2G

Take one single application compiled to WebAssembly and split it into pieces at deployment time. Run these pieces in different Kubernetes deployments, different clouds, or even split across edge and cloud.

This code-forward talk will show how to write an application using Wasm components and a combination of Rust and TypeScript. We'll show how to use the CNCF project Spin for developing apps, and then use Kubernetes, Helm, SpinKube, and other open source tools to deploy this application in multiple locations.

Conceptually, we'll tie this new development pattern to microservice architecture and distributed systems to show how WebAssembly's Component Model is paving the way for a new class of application.

Speakers

Matt Butcher

CEO, Fermyon

Matt Butcher (CEO) is a founder of Fermyon. He is one of the original creators of Helm, Brigade, CNAB, OAM, Glide, and Krustlet. He has written or co-written many books, including "Learning Helm" and "Go in Practice." He is a co-creator of the "Illustrated Children’s Guide to Kubernetes... Read More →

Tuesday June 24, 2025 11:55am - 12:35pm MDT
Bluebird Ballroom 2G

Cloud + Containers

Audience Experience Level Intermediate

11:55am MDT

Mock Me If You Can: Using Mocks in Container Applications for Integration Testing - John Coyne, Discover Financial Services

Tuesday June 24, 2025 11:55am - 12:35pm MDT

Bluebird Ballroom 2F

Automated testing needs to offer fast, reliable feedback so that defects can be quickly identified and resolved. In this session, I'll talk about how to use the open-source service virtualization framework, Wiremock, as a sidecar container to mock out the dependent services of an application running in a container platform. This can be used in Narrow Integration testing of an application as part of a CI/CD pipeline to ensure maximum code coverage along with stability of the test suite.

I'll walk attendees through a demo of practical use and share some best practices I've learned when setting up a Wiremock container for testing. Attendees will leave with a better understanding of Wiremock and tips for how to use it in their own testing scenarios.

Speakers

John Coyne

Distinguished Engineer of Application Engineering, Discover Financial Services

John is a Distinguished Engineer of Application Engineering at Discover Financial Services with over 20 years of experience building Java applications. His current interests include Observability, CI/CD automation, Kubernetes, and good API design. Outside of work, John enjoys spending... Read More →

Tuesday June 24, 2025 11:55am - 12:35pm MDT
Bluebird Ballroom 2F

Cloud + Containers

Audience Experience Level Intermediate

11:55am MDT

Sponsored Session: Following the Golden Image Road: Best Practices and Pitfalls - Natalie Somersall, Chainguard

Tuesday June 24, 2025 11:55am - 12:35pm MDT

Bluebird Ballroom 3H

The rise and increased prevalence of software supply chain attacks, the strengthened security requirements of compliance frameworks, and the speed and complexity of automated software development and build processes have all driven the need for open source standardization, often called Golden Image or Base Image programs.

But while DevOps and security teams recognize how critical open source standardization is, few feel comfortable tackling a large and fragmented challenge like open source software delivery, especially across diverse and disparate developer needs.

Join Chainguard’s Natalie Somersall to learn about best practices and common pitfalls that you
should be on the lookout for when taking on a golden image program.

Audience members will walk away with a clear understanding of the right change management milestones to keep in mind, the critical implementation criteria, and the most compelling use cases to make developers more productive and deliver secure open source software from the
start.

Speakers

Natalie Somersall

Principal Field Engineer, Public Sector, Chainguard

Tuesday June 24, 2025 11:55am - 12:35pm MDT
Bluebird Ballroom 3H

Cloud + Containers

11:55am MDT

Early Ethernet With Linux - Keerthy Jagadeesh & Siddharth Vadapalli, Texas Instruments

Tuesday June 24, 2025 11:55am - 12:35pm MDT

Bluebird Ballroom 2B

The automotive world is rapidly moving towards software defined vehicles & zonal architecture. Ethernet is the backbone of zonal architecture. The bandwidth and response time requirements of ethernet are higher than ever. The network stack with Linux makes it a compelling choice of OS for Gateway/ADAS SOCs.

With growing number of ECUs in the car, the gateway SOC needs to be ethernet ready very early to support FOTA and telematics applications. All the ECUs sitting behind the gateway need ethernet functionality for communication. With ROM code, boot loader kernel & the user space application taking time to initialize, the goal of early ethernet is a tricky one.

The presentation aims to cover the optimizations done at each phase of the Linux boot to achieve early ethernet. Top level optimizations:

1. Streamlined the boot flow from bootloader to get to Linux kernel faster.
2. Opening the network device early with driver optimization allows the hardware to be initialized early
3. Configuring majority of network using networkd scripts allows the interfaces to be ready early

Although the demonstration is done using TI's DRA821 Gateway SOC, this is applicable to any SOC using Linux.

Speakers

Keerthy Jagadeesh

Software Applications Engineer, Texas Instruments

Keerthy Jagadeesh is an ardent Linux developer team of the Texas Instruments and has been an active Linux contributor for the past 17+ years. He has worked on thermal management for TI SoCs, PMIC drivers, low power modes. Maintains TI THERMAL DRIVER & maintains TI GPIO DRIVER. He... Read More →

Siddharth Vadapalli

Embedded Software Engineer, Texas Instruments

I have experience working on U-Boot and Linux device drivers for Ethernet, PCIe and USB for Texas Instruments SoCs.

Tuesday June 24, 2025 11:55am - 12:35pm MDT
Bluebird Ballroom 2B

Embedded Linux Conference

Audience Experience Level Intermediate

11:55am MDT

Virtio for PCI Endpoint Subsystem in Linux Kernel - Manivannan Sadhasivam, Linaro Ltd

Tuesday June 24, 2025 11:55am - 12:35pm MDT

Bluebird Ballroom 2A

Traditionally, Virtio is primarily used in virtualized environments to allow the Hypervisor to Guest communication in an agnostic way. But Virtio as a standard can be leveraged outside virtualization for communication between any two entities.

The PCI Endpoint subsystem in the Linux kernel is used to run Linux on tiny PCI endpoint devices such as modems, NIC, GPU, etc... It requires the developers to write function drivers to communicate with the host. On most occasions, these function
drivers also require counterpart drivers on the host systems. This increases the time required for the project's development, as the development needs to happen on both the host and endpoint systems.

This is where Virtio comes in handy for the PCI Endpoint subsystem. With Virtio, developers can focus on developing the back-end drivers on the endpoint side and leverage the existing front-end drivers on host systems (such as virt-net, virt-gpu, etc...).

In this talk, Manivannan Sadhasivam will present the proposals received from the community for adding Virtio backend support to the PCI Endpoint subsystem and elaborate on the one that got a consensus to move forward, along with the future plans.

Speakers

Manivannan Sadhasivam

Senior Engineer, Linaro Ltd

Mani is a Senior Kernel Engineer at the Qualcomm Landing team of Linaro. He maintains the PCI Endpoint Subsystem, Qualcomm MHI bus, and several drivers in the Linux Kernel.

Tuesday June 24, 2025 11:55am - 12:35pm MDT
Bluebird Ballroom 2A

Embedded Linux Conference

Audience Experience Level Intermediate

11:55am MDT

Empowering Asian Contributions: The Rise of Regional User Groups in Open Source Communities - Naomichi Shima & Norio Kobota, Sony Group Corporation

Tuesday June 24, 2025 11:55am - 12:35pm MDT

Bluebird Ballroom 3G

In the vast landscape of the global Open Source community, Asia, despite its significant population, has historically seen limited contributions.
This session will delve into the recent surge in the establishment of regional user group in Japan and their ripple effects across Asia. We will explore the inception and growth of the OpenChain Project's Japan Chapter since 2017, which has catalyzed the expansion of regional communities in China, Korea, and beyond.
We will discuss the motivations driving individuals in these regional communities and highlight the unique characteristics of the OpenChain Japan community. Furthermore, we will examine the collaborative efforts between the Japanese community and other open source communities like the TODO Group, showcasing how these partnerships have amplified their impact.
Through our experiences, we will share insights on the essential elements for fostering successful regional communities in Japan. Additionally, we will introduce messages from the managers of OpenChain and the TODO Group, emphasizing the importance of integrating regional activities with the global open source ecosystem.

Speakers

Naomichi Shima

Alliance Manager, Sony Group Corporation

Naomichi Shima is OSPO and Alliance Manager in Sony Group Corporation. He chairs the Sony Group Corporation's Open Source Promotion Committee and works to promote open source compliance within the company. He leads the FAQ subgroup of the OpenChain Japan Work Group. He is an English-Japanese... Read More →

Norio Kobota

Senior Open Source Strategist, Sony Group Corporation

Norio Kobota is a Senior Open Source Strategist in Sony Group Corporation. He is the chair of Open Source Software License Committee in Sony and works to improve OSS compliance and relationships with OSS communities. He represents Sony as a board member of OpenChain Project. And... Read More →

Tuesday June 24, 2025 11:55am - 12:35pm MDT
Bluebird Ballroom 3G

Equity + Inclusion + Accessibility

Audience Experience Level Any

11:55am MDT

Extending Container Performance Isolation: Regulating Memory Bandwidth & Cache in the Kernel - Jonathan Perry, Unvariance

Tuesday June 24, 2025 11:55am - 12:35pm MDT

Bluebird Ballroom 2D

While containers provide isolation for CPU cycles and memory capacity, they offer limited protection against performance interference through shared CPU caches and memory bandwidth. Such contention was shown to increase application response times by 4-13x. The Linux resctrl infrastructure provides monitoring and control mechanisms, but has limitations for controlling real-world applications.

For example, child processes do not inherit their parent's resctrl groups, leaving any application that forks improperly monitored and controlled. Additionally, the current filesystem-based interface makes it difficult to build a controller that can monitor and adjust quickly enough to keep up with frequently changing application memory behavior.

This talk introduces the memory interference problem and presents new kernel mechanisms to address these limitations. A new collector enables effective control by capturing per-container measurements of cache and memory bandwidth usage at millisecond frequencies. We'll cover how the solution combines Intel RDT, AMD QoS, high-resolution timers, perf counters, and cgroups to achieve this. We'll discuss future work and opportunities for collaboration.

Speakers

Jonathan Perry

CEO, Unvariance

Jonathan Perry is a maintainer of the OpenTelemetry eBPF network collector and CEO of Unvariance, which develops tools to detect and mitigate noisy neighbors. At MIT, he built systems to enhance efficiency and reduce response times by mitigating network contention. Jonathan previously... Read More →

Tuesday June 24, 2025 11:55am - 12:35pm MDT
Bluebird Ballroom 2D

Linux

Audience Experience Level Intermediate

11:55am MDT

The Responsible Generative AI Framework Pathways: Where Do We Go From Here? - Ofer Hermoni, iForAI & Oita Coleman, Open Voice TrustMark Initiative

Tuesday June 24, 2025 11:55am - 12:35pm MDT

Bluebird Ballroom 3E

The Responsible Generative AI Framework (RGAF) lays the foundation for ethical and transparent AI development, but what comes next? This panel will explore the Responsible AI Pathways, a set of strategic directions designed to move from framework to implementation.

Panelists will discuss the four key pathways shaping the future of responsible AI:
• Big-Picture Alignment – Understanding AI’s role in humanity’s future and aligning LF AI & Data initiatives with ethical AI progress.
• Ecosystem Mapping – Identifying gaps, overlaps, and collaboration opportunities within the global Responsible AI landscape.
• Deep Dive into Core Dimensions – Addressing AI safety, security, sustainability, and other critical aspects for responsible development.
• Practical Implementation – Grounding principles in real-world use cases, industry applications, and open-source tooling.
This session will also highlight the role of AI safety and security in responsible AI adoption and provide attendees with insights, strategies, and next steps to ensure AI innovation remains transparent, accountable, and trustworthy.
Join us for a forward-thinking discussion on how to shape the future of responsible Gen AI.

Speakers

Ofer Hermoni

Founder, Chief AI Officer, iForAI

Oita Coleman

Project Lead / Senior Advisor, Open Voice TrustMark Initiative

Oita Coleman is the Project Lead/Senior Advisor at the Open Voice TrustMark Initiative, a global Linux Foundation project dedicated to educating and advocating for open standards and best practices for conversational AI technologies. In her role, she is responsible for developing... Read More →

Tuesday June 24, 2025 11:55am - 12:35pm MDT
Bluebird Ballroom 3E

Open AI + Data

Audience Experience Level Beginner

11:55am MDT

Steps Towards Achieving a Secure Linux Server - Karissa Sanchez & Angelina Vu, Microsoft

Tuesday June 24, 2025 11:55am - 12:35pm MDT

Bluebird Ballroom 3A

Linux is widely regarded as being a strong choice for those who value a secure operating system, but what is it about Linux that earns it this reputation? In addition, while it may be more secure than alternatives, it is by no means impenetrable. What are the weaknesses in a Linux system and how are they commonly exploited by malicious actors? More importantly, what can be done by administrators to ensure that their system is as secure as possible? We will use an example of somebody setting up an Ubuntu web server as a starting point and discuss ways in which the web server can be hardened. We will highlight the importance of implementing best security practices such as using Linux Security Modules, configuring firewalls, and more. As we discuss these best practices, we will demonstrate ways in which failing to use them can leave the web server vulnerable to malicious actors. Ultimately, the audience will leave the talk with an understanding of how Linux systems are vulnerable to attacks, what can be done to harden a Linux system, and how implementing some of these best practices can prevent attacks.

Speakers

Karissa Sanchez

Software Engineer, Microsoft

Karissa is a software engineer at Microsoft working on Linux Emerging Technologies. She recently graduated from MIT with a master’s degree in computer science. Her interests include Linux systems security and natural language processing.

Angelina Vu

Software engineer, Microsoft

Angelina is a software engineer at Microsoft working on the Linux Emerging Technologies team. She graduated from the University of California, Davis at the end of 2022 with a degree in CS. She started her Linux journey in the summer of 2021 as an intern on Microsoft's Linux Systems... Read More →

Tuesday June 24, 2025 11:55am - 12:35pm MDT
Bluebird Ballroom 3A

Open Source 101

Audience Experience Level Beginner

11:55am MDT

Making EU CRA (Cyber Resilience Act) Simplified and Non-scary for OSS Contributors - Roman Zhukov, Red Hat

Tuesday June 24, 2025 11:55am - 12:35pm MDT

Bluebird Ballroom 3C

The EU Cyber Resilience Act (CRA) aims to safeguard European consumers and at first glance it targets only the EU market. But in fact the entire OSS ecosystem falls under its scope, which could be scary not only for Manufacturers or Stewards, but also is seen harmful for Individual Developers. Let’s debunk some of those myths! To preserve CRA’s positive intention, we as a community work hard to make sure its implementation incentivizes contributors to become good Open-Source citizens.

During this session we will explore how CRA impacts all players in the OSS ecosystem and why Maintainers MUST keep going with their brilliant work and shouldn’t be afraid. We will discuss what we at foundations and various expert groups are doing to help the open-source community navigate the actual requirements, as well as what standards and tools are available right now, followed by useful examples. They will include templates, samples, checklists, good practices and ideas how YOU can leverage: open-source tools like Security Scorecard, GUAC, Trustify, Minder, a few others; frameworks like Security Base Line and C2C2F; standards like OpenVEX; collaborations like Global Cyber Policy WG.

Speakers

Roman Zhukov

Principal Security Community Architect, Red Hat

Practicing Cybersecurity expert, engineer and manager (15+ years), (ISC)2 CC (Certified in Cybersecurity). Currently - Principal Security & Community Architect at Red Hat. Ex. - Head of Product Security & Privacy for Data Center & AI SW at Intel. Roman has broad experience from security... Read More →

Tuesday June 24, 2025 11:55am - 12:35pm MDT
Bluebird Ballroom 3C

Open Source Leadership

Audience Experience Level Intermediate

11:55am MDT

Stories From the Trenches: Effective Collaboration Between OSPOs and R&D Organizations - Georg Kunz & David Östman, Ericsson

Tuesday June 24, 2025 11:55am - 12:35pm MDT

Bluebird Ballroom 3F

In today's rapidly evolving tech landscape, alignment of open source initiatives and product-focused research & development (R&D) efforts are crucial to achieving strategic business goals. Establishing a dedicated Open Source Program Office (OSPO) plays a critical role in ensuring effective strategy, governance, fostering community engagement, and maximizing the benefits of open source contributions. However, an OSPO must connect these high-level principles with the needs and day-to-day operations of R&D organizations to ensure their effectiveness.

In this presentation, Georg and David will represent the OSPO and R&D at Ericsson. They will share insights into a set of concrete real-world cases and challenges, such as facilitating upstream contributions to the Linux kernel, establishing the Valkey project, and eliminating downstream forks. Based on these examples, they will delve into the intricacies of establishing an effective collaboration between the OSPO and R&D departments, highlighting how to bridge the gap between the needs of product team and the overarching company strategy.

Speakers

Georg Kunz

Open Source Manager, Ericsson

David Östman

General Manager Ericsson Software Technology Sweden, Ericsson

David is the General Manager of Ericsson Software Technology (EST) Sweden, leading a dedicated team of engineers developing open source software on projects like Linux, Yocto, and Valkey. With over 25 years of experience in the telecommunications industry, David began his career at... Read More →

Tuesday June 24, 2025 11:55am - 12:35pm MDT
Bluebird Ballroom 3F

OSPOCon

Audience Experience Level Intermediate

11:55am MDT

Unconference

Tuesday June 24, 2025 11:55am - 12:35pm MDT

Bluebird Ballroom 2H

Do you have a topic you’d like to discuss with fellow attendees? A project or idea you want to share and get feedback on? Something you'd like to teach others? Sign up to lead an Unconference session!
Sessions are informal, attendee-driven, and a great way to connect with others. There will be no AV—only a flip chart will be provided.
You can sign up in advance using this form by June 13, or onsite at the event in the Solutions Showcase - Bluebird Ballroom 1AB. Once your time slot is confirmed, it will be added to the official conference schedule so other attendees can join your session onsite.
Click here to view the Unconference schedule. Be sure to check out the topics being discussed and join us onsite for great conversations!

Tuesday June 24, 2025 11:55am - 12:35pm MDT
Bluebird Ballroom 2H

Unconference Sessions

11:55am MDT

Wait, So Now You're Telling Me We Need FGA? - Carla Urrea Stabile, Auth0 by Okta

Tuesday June 24, 2025 11:55am - 12:35pm MDT

Bluebird Ballroom 2E

When building an application, we often start with simple requirements: “Just make sure only the admin can see this page.” Fast forward a few months, and the requirements have grown into a tangled web of roles, attributes, exceptions, and edge cases. Sound familiar?

In this talk, we’ll follow the journey of a fictional project that begins with no access control, progresses to Role-Based Access Control (RBAC), struggles with Attribute-Based Access Control (ABAC), and ultimately finds its footing with Fine-Grained Authorization (FGA). In this process, you’ll learn how OpenFGA addresses the growing complexity of modern applications with a relationship-based model that’s both flexible and scalable.

Speakers

Carla Urrea Stabile

Senior Developer Advocate & Software Engineer, Auth0 by Okta

Carla is a software engineer and developer advocate at Auth0 by Okta. She’s a language agnostic developer but enjoys working with Ruby and Python. When she’s not working you can find her going on walks with her dogs, hiking or going on a bike ride.

Tuesday June 24, 2025 11:55am - 12:35pm MDT
Bluebird Ballroom 2E

Wildcard

Audience Experience Level Intermediate

11:55am MDT

IREE: An AI Subsystem for Zephyr? - Peter Kourzanov & Anmol Anmol, IMEC

Tuesday June 24, 2025 11:55am - 12:35pm MDT

Bluebird Ballroom 2C

Machine Learning and AI are experiencing explosive growth. The concentration of AI power in the datacenters, as well as the current trends in training and inferencing infrastructure built around power-hungry GPUs and control nodes running interpretive languages on full-fledged monolithic operating systems brings about an evermore greater need for energy. In this talk we will sketch a different future: one where the needs of scaling are addressed in a way of embedding lightweight control software running on energy-efficient hardware into a sea of heterogeneous compute accelerators arranged in an energy-conserving fashion. One where the edge devices, be it small IoT nodes or an intelligence subsystem inside a mobile device can all be included in one global, distributed, cognitive and sustainable network supporting the users.
We intend to cover our recent developments in the way of porting IREE to run on Zephyr's POSIX layer, as well as experiments to see how Zephyr as a lightweight library kernel can support typical inference tasks that were used as workloads to tune an accelerator's micro-architecture (using gem5 simulator) as well as to emulate the design on the FPGA as a scale-up.

Speakers

Peter Kourzanov

Principal member of technical staff, IMEC

Having started my professional career into CS (at TUDelft DBMS) I moved towards RT & streaming systems for CE (architecture & infra group at Philips Research). Dataflow compiler & middleware project got me further into the DSPs and models for radio & radar transceivers - the focus... Read More →

Anmol Anmol

Development Engineer, IMEC, Belgium

Exploring hardware/software codesign, microarchitecture and related research, and engineering problems.

Tuesday June 24, 2025 11:55am - 12:35pm MDT
Bluebird Ballroom 2C

Zephyr

Audience Experience Level Intermediate

12:15pm MDT

Standardizing CI/CD Observability: Insights From the OpenTelemetry CI/CD SIG - Dotan Horovits, AWS

Tuesday June 24, 2025 12:15pm - 12:35pm MDT

Bluebird Ballroom 3B

We all know that observability is a must-have for operating systems in production. But we often neglect our own backyard - our software release process. As a result, we also lack standardization, and each CI/CD tool invent its own way of reporting about pipeline runs, which causes fragmentation, lock-in and difficulty to leverage existing observability tools.

We've been talking about the need for a common "language" for reporting and observing CI/CD pipelines for years, and finally, we see the first "words" of this language entering the "dictionary" of observability - the OpenTelemetry open specification and semantic conventions. On this talk the OTel CI/CD SIG leads will share the need, and the work of the SIG.

Join us to learn about this new SIG, its role, the milestones achieved and roadmap ahead. The talk will also discuss the alignment with adjacent open source communities such as the CDF's Jenkins and CDEvents and the Eiffel community.

Speakers

Dotan Horovits

Sr. Developer Advocate for OpenSearch, AWS

Tuesday June 24, 2025 12:15pm - 12:35pm MDT
Bluebird Ballroom 3B

cdCon

Audience Experience Level Advanced

12:15pm MDT

Defining Open Source AI: Can the “Judgement of Solomon” Help the Open Source Community Find Success? - Jeffrey Borek, IBM

Tuesday June 24, 2025 12:15pm - 12:35pm MDT

Bluebird Ballroom 3D

When faced with a difficult challenge sometimes it helps to look back at lessons from ancient history to guide your thinking. The Open Source Initiative (OSI) is working to create a definition for Open Source AI (OSAID), aiming to apply open source principles to artificial intelligence development, but clearly the 1.0 version is a work-in-progress. Can it find success? How may policy-makers react? Join this session to hear about the latest efforts to define open source AI and what's likely in store for 2025.

Speakers

Jeff Borek

WW Sr. Program Director Open Technologies, AI Alliance, and AI Supply Chain Security, IBM Research, IBM

Working across IBM Research to build a scalable and consistent AI software supply chain security framework, while continuing to lead the consumption compliance Open Source Program Office (OSPO), including policy, execution and guidance. Working with IBM Government & Regulatory Affairs... Read More →

Tuesday June 24, 2025 12:15pm - 12:35pm MDT
Bluebird Ballroom 3D

Standards + Specifications

Audience Experience Level Intermediate

12:35pm MDT

Lunch (Provided Onsite for All Attendees)

Tuesday June 24, 2025 12:35pm - 2:10pm MDT

Solutions Showcase - Bluebird Ballroom 1AB

Tuesday June 24, 2025 12:35pm - 2:10pm MDT
Solutions Showcase - Bluebird Ballroom 1AB

Special Events / Exhibits / Breaks

12:35pm MDT

Women & Non-Binary Lunch

Tuesday June 24, 2025 12:35pm - 2:10pm MDT

Go Gourmet Cafe (Level 3 - Street Level)

We’d like to invite all attendees who identify as women or non-binary to join each other for a complimentary networking lunch at the event. We will begin with a brief introduction and then attendees will be free to enjoy lunch and mingle with one another. All attendees must identify as a woman or non-binary and must be registered for the conference to attend.

*We will do our best to accommodate all interested attendees, but please note that participation is on a first-come, first-served basis.

Tuesday June 24, 2025 12:35pm - 2:10pm MDT
Go Gourmet Cafe (Level 3 - Street Level)

Special Events / Exhibits / Breaks

2:10pm MDT

Lightning Talk: Streaming and Processing Edge Vision Data in Real Time - Joyce Lin, Viam

Tuesday June 24, 2025 2:10pm - 2:20pm MDT

Bluebird Ballroom 3E

Edge-based computer vision gives us real-time insights, but getting that data where it needs to go without high bandwidth, lag, or hardware strain is a big challenge. Learn how to build a fast, event-driven vision pipeline using WebRTC for real-time streaming and gRPC for lightweight commands. Whether for security cameras or IoT, you'll gain a practical blueprint for a scalable, open-source vision system to stay responsive at the edge while being cost-effective, adaptable, and cloud-independent.

Speakers

Joyce Lin

Head of developer relations, Viam

Joyce Lin is the head of developer relations at Viam, a robotics platform that connects software with smart machines in the physical world. Based in San Francisco, she is also a Tiktok influencer, dog mom, cat mom, and writer.

Tuesday June 24, 2025 2:10pm - 2:20pm MDT
Bluebird Ballroom 3E

Open AI + Data

Audience Experience Level Beginner

2:10pm MDT

Your Deployments Are Lying. AI Knows - Seema Saharan, Autodesk & Aditya Soni, Forrester Research

Tuesday June 24, 2025 2:10pm - 2:30pm MDT

Bluebird Ballroom 3B

Is your CI/CD pipeline giving you a green light when, in reality, something's lurking in the shadows? Traditional monitoring tools often miss the subtle failures that could silently impact your users. While your pipeline may say all systems go, AI sees the truth behind the curtain.
In this talk, we’ll unveil how AI can catch those hidden deployment issues that your traditional monitoring tools overlook, providing real-time, actionable insights into your Kubernetes environments.

Here’s what we’ll cover:
1. Identify deployment issues missed by traditional monitoring tools with insights from AI
2. Leverage AI to analyze logs, metrics, and traces for early problem detection.
3. Watch how AI automatically correlates data to resolve issues in real time.
By the end of this talk, you’ll gain the knowledge to integrate AI-powered observability into your CI/CD pipelines, enabling you to catch hidden problems early and deploy with confidence.

Speakers

Seema Saharan

Site Reliability Engineer, CNCF Ambassador, Autodesk

Meet Seema, the tech whiz at Autodesk. She's not just about fixing things – she loves sharing what she knows! Whether speaking at cool events like KubeCon NA, KubeDay, GitLab Commit, and GitHub Universe or breaking down tech on her YouTube channel, Seema makes the complicated stuff... Read More →

Aditya Soni

CNCF Ambassador, DevOps/SRE, Forrester Research

Aditya Soni is a DevOps/SRE tech professional He worked with Product and Service based companies including Red Hat, Searce, and is currently positioned at Forrester Research as a DevOps Engineer II. He holds AWS, GCP, Azure, RedHat, and Kubernetes Certifications.He is a CNCF Ambassador... Read More →

Tuesday June 24, 2025 2:10pm - 2:30pm MDT
Bluebird Ballroom 3B

cdCon

Audience Experience Level Any

2:10pm MDT

Let’s Farm Out Our Image Builds! - Urvashi Mohnani, Red Hat

Tuesday June 24, 2025 2:10pm - 2:50pm MDT

Bluebird Ballroom 2G

As the fast-paced AI-driven landscape of computing continues to diversify, the importance of multi-arch container images cannot be overstated. Applications are no longer confined to data centers but extend across multiple platforms, devices, and appliances.

Wouldn’t it be great if we could build images for every architecture from just one machine? It would be even more amazing if we could do that without the slowness of emulation! This is where Podman farm comes in. Podman farm is a new feature that allows you to 'farm' out builds to groups of machines you have access to, enabling you to easily build multi-architecture images with a single command. In this talk, we will highlight the challenges of multi-architecture builds and demonstrate how Podman farm addresses them, keeping performance and usability in mind.

Container images that run seamlessly across different architectures ensure consistency, reduce complexity, and accelerate the development cycle. This session will empower attendees to develop on one architecture and deploy confidently on another.

Speakers

Urvashi Mohnani

Principal Software Engineer, Red Hat

Urvashi Mohnani is a Principal Software Engineer on the OpenShift Container Tools team at Red Hat. She has spent the last few years contributing to and maintainer open source container tools projects including podman, buidlah, cri-o, and skopeo. She is a co-organizer of DevConf.US... Read More →

Tuesday June 24, 2025 2:10pm - 2:50pm MDT
Bluebird Ballroom 2G

Cloud + Containers

Audience Experience Level Beginner

2:10pm MDT

Whoops! I Accidentally Leaked My Cloud Keys - Eve Martin-Jones & Hayden Blauzvern, Google

Tuesday June 24, 2025 2:10pm - 2:50pm MDT

Bluebird Ballroom 2F

Leaked credentials aren't a new problem, but the primacy and complexity of Cloud environments means that leaked credentials are more likely than ever to be your problem. Not only that, but recent research has shown that it may only be a matter of seconds between a leak and an exploit. As the systems for developing, building, publishing and deploying applications become more sophisticated, the types of leaks developers need to guard against also change.

In this talk, we will present new research by the Google Open Source Security Team into when and how developers leak credentials in modern software applications. We'll discuss some of the common ways leaks occur for developers of open source artifacts like containers and software packages. We'll also provide practical insights into scalable credential scanning and ecosystem-level protections for developers and organizations who want to keep their credentials secure to help when every second counts.

Speakers

Eve Martin-Jones

Senior Software Engineer, Google

Eve is an engineer working on open source software security at Google. She lives in Australia, with her cat Mochi, who is surprisingly proficient at JavaScript. Between D&D campaigns, she can be found deciphering the Cargo dependency-resolution algorithm bug-for-bug, advocating for... Read More →

Hayden Blauzvern

Technical Lead Manager, Google

Hayden Blauzvern is a technical lead manager on Google’s Open Source Security Team, focused on making open-source software more secure through code signing and applied transparency. Hayden is a maintainer and the community chair on the Sigstore project.

Tuesday June 24, 2025 2:10pm - 2:50pm MDT
Bluebird Ballroom 2F

Cloud + Containers

Audience Experience Level Any

2:10pm MDT

ARM64 Linux Laptops Status Report - Stefan Schmidt, Linaro Ltd.

Tuesday June 24, 2025 2:10pm - 2:50pm MDT

Bluebird Ballroom 2A

In June last year a bunch of new laptops, based on the Snapdragon X Elite, have been launched. All major laptop vendors launched devices, with over three
dozen to choose from at the time of this writing. Offering a nice alternative to ChromeBooks or MacBooks for Arm enthusiasts. No matter if you are intrigued by the battery life, performance or always wanted an arm64 based system to natively
compile for your embedded targets.

The core question is, how good is the Linux support. Being designed for Windows-on-ARM there is a risk Linux support is rudimentary at best. Does boot with UEFI work out of the box? Is there a device tree description for your specific device? Which hardware features are already supported mainline?
Is the firmware for various drivers available? How is the performance?

In short, is it usable as a daily driver for a developer? Stefan set out to find out, and report here.

In this talk he will provide details on the current state of development of these devices. An in-depth view on the hardware support: what is in mainline, which patches are pending and what is missing completely.
[Target: ELC North America]

Speakers

Stefan Schmidt

Tech Lead / Senior Linux Kernel Engineer, Linaro Ltd.

Stefan Schmidt is a FOSS contributor for nearly 20 years now. During this time he worked on different projects and different layers of the Linux ecosystem. From bootloader and Kernel over build systems for embedded to user interfaces. After years as a freelancer, member of the Samsung... Read More →

Tuesday June 24, 2025 2:10pm - 2:50pm MDT
Bluebird Ballroom 2A

Embedded Linux Conference

Audience Experience Level Intermediate

2:10pm MDT

“Early Boot and Late Attach” of Remote Processors for Time Critical Applications - Beleswar Prasad Padhi & Vaishnav Mohandas Achath, Texas Instruments

Tuesday June 24, 2025 2:10pm - 2:50pm MDT

Bluebird Ballroom 2B

Modern Heterogeneous SoCs designed for automotive use cases integrate multiple remote processors (rprocs) for Real-Time Operations, like Cortex-R5F for handling Capture and Display, alongside a general-purpose processor like Cortex-A to run HLOS like Linux. Automotive requirements are Time-Critical, Safety-Oriented and often demand for the Real-Time rprocs to be booted early for use cases like Early Chime, Early Rear View Camera (RVC). This presentation discusses about the “Early Boot + Late Attach” feature in remoteproc framework, where-in the rprocs would be brought up early in the boot flow by bootloader, and later Linux would just “attach” into the pre-running rprocs to establish IPC & suspend/resume. It also explains how developers can adopt this approach and shares debugging lessons. The talk also addresses how the framework handles key challenges with this approach, like identifying a pre-running rproc and allocating the resources required by it (memory carveouts, mappings, trace buffers etc.) by parsing the pre-loaded firmware, rather than re-initializing the core like in normal boot flow. A live case study will be presented on Early RVC application showcasing this feature.

Speakers

Vaishnav Achath

Senior Software Engineer, Texas Instruments

Vaishnav Achath is a Senior Software Engineer with Texas Instruments Inc. working with the Linux Core Product Development team for Jacinto Processors. As part of this role, Vaishnav primarily works on upstream Linux kernel and U-Boot development and also on customer requirements... Read More →

Beleswar Prasad Padhi

Software Engineer at Texas Instruments, Texas Instruments

Beleswar is a Software Engineer at Texas Instruments India, working on Upstream Linux Kernel and U-Boot, as part of the Linux Core Product Development team for Jacinto Processors. Beleswar is a Free and Open Source Software Enthusiast and has contributed to several Open Source security... Read More →

Tuesday June 24, 2025 2:10pm - 2:50pm MDT
Bluebird Ballroom 2B

Embedded Linux Conference

Audience Experience Level Any

2:10pm MDT

Highlighting the AI in AbleIsm - Michelle Frost, JetBrains

Tuesday June 24, 2025 2:10pm - 2:50pm MDT

Bluebird Ballroom 3G

The origins of artificial intelligence can be traced back to Ancient Greek mythology and philosophy, where early musings on what it means to be human began. Throughout history, these ideas have shaped our understanding of intelligence and influenced our pursuit of creating machines like us. However, this quest often relies on an idealized version of what it means to be “human”, leading to the exclusion of diverse representations and perpetuating ableism. In this talk, we will explore how AI technologies contribute to modern ableism by reinforcing narrow definitions of intelligence and humanity. We will examine the exclusions inherent in these definitions and discuss whom these technologies leave behind and how. By understanding these biases embedded in AI, we can better address its role in society and work towards more inclusive technology.

Speakers

Michelle Frost

AI Advocate, JetBrains

Michelle Frost is an AI Advocate at JetBrains. With over a decade of engineering experience, Michelle holds a Bachelor of Science in Computer Science from UMKC, a Master of Science in Artificial Intelligence from Johns Hopkins University, and is a Microsoft AI MVP. Michelle is also... Read More →

Tuesday June 24, 2025 2:10pm - 2:50pm MDT
Bluebird Ballroom 3G

Equity + Inclusion + Accessibility

Audience Experience Level Beginner

2:10pm MDT

Linux Networking: Key Understanding and Practical Troubleshooting - Muna Nwaiwu, Google

Tuesday June 24, 2025 2:10pm - 2:50pm MDT

Bluebird Ballroom 3A

This session provides a comprehensive overview of essential Linux networking concepts, from IP addressing and routing to practical troubleshooting techniques. Participants will learn to configure network interfaces, diagnose common network issues, and gain the confidence to manage Linux network environments effectively.

Speakers

Muna Nwaiwu

Network Engineer, Google

Munachimso Victor Nwaiwu, Network Engineer at Google, drives AI network infrastructure optimization. He has deep expertise in enterprise, data center, and edge network design and automation. He consistently enhances network operations. Prior roles at Lenovo and Facebook focused on... Read More →

Tuesday June 24, 2025 2:10pm - 2:50pm MDT
Bluebird Ballroom 3A

Open Source 101

Audience Experience Level Beginner

2:10pm MDT

The Power of "AND": A New Template for Open Source Sustainability - Alyssa Wright & Francesca Romano, Bloomberg

Tuesday June 24, 2025 2:10pm - 2:50pm MDT

Bluebird Ballroom 3C

The traditional view of open source sustainability often frames it as a choice: business value OR public good. We argue that this is a false dichotomy. Bloomberg's Open Source Program Office and Corporate Philanthropy team have partnered to develop a new template – one built on the power of "AND."

This presentation will explore how combining business value AND philanthropic impact creates a transformative approach to open source leadership. We'll share our strategic framework for achieving this "AND," demonstrating how it benefits companies, individuals, open source projects, and the world around us.

Join us to learn how to build similar partnerships within your organization and why corporate engagement in open source sustainability is more important now than ever to ensure the long-term health of the critical digital infrastructure underpinning our modern world.

Speakers

Alyssa Wright

Open Source Program Office, Bloomberg

Alyssa Wright co-leads Bloomberg's Open Source Program Office (OSPO) in the Office of the CTO, where she champions the firm's open source strategy and engagement. Guided by the motto "be curious, solve problems, do good," Alyssa focuses on creating positive impact through open source... Read More →

Francesca Romano

Head of Global Operations, Bloomberg LP

Francesca Romano leads Global Operations for Bloomberg’s Corporate Philanthropy team, where her focus is on delivering solutions that are collaborative, innovative, and effective. She holds a bachelor’s degree in comparative literature from Brown University and an MBA from Columbia... Read More →

Tuesday June 24, 2025 2:10pm - 2:50pm MDT
Bluebird Ballroom 3C

Open Source Leadership

Audience Experience Level Any

2:10pm MDT

Panel Discussion: It Takes a Village - The Case for a Versatile Open Source Workforce - Ildiko Vancsa, Open Infrastructure Foundation; Charles Eckel, Cisco Systems; Ray Paik, PingCAP; Ria Farrell Schalnat, HPE

Tuesday June 24, 2025 2:10pm - 2:50pm MDT

Bluebird Ballroom 3F

Open source has become mainstream; but not everyone knows what the term really means or how to succeed with it. New legal regulations such as the Cyber Resilience Act (CRA) in the EU will raise further awareness and require everyone to pay closer attention to open source software. However, there are also equal pressures to streamline and cut costs, often resulting in scaling back open source programs.

This panel brings you speakers in different job roles, including community manager, OSPO program compliance manager, open source maintainer, and standards lead. The panelists will explore their responsibilities, interactions and strategies for success to capture why each of these roles are critical to the success and sustainability of the open source ecosystem, whether we look at open source projects or corporate organizations whose products and services depend on open source.

Join us to learn about how you can build and leverage versatile teams to succeed with open source sustainably!

Speakers

Ria Schalnat

Open Compliance Manager, HPE

I am delighted to work with the Open Program Office of Hewlett Packard Enterprise! This role is the culmination of my prior lives as a computer programmer, lawyer and adjunct professor specializing in intellectual property subjects. I have counseled numerous clients in patent portfolio... Read More →

Ildiko Vancsa

Director of Community, Open Infrastructure Foundation

Charles Eckel

Principal Engineer, Global Technology Standards, Cisco Systems

Charles is a recognized champion of open source, standards, and interoperability. In IETF, he started IETF Hackathons, advancing the pace and relevance of Internet standards by combining open source and standards. He serves as IETF liaison manager to 3GPP, helping them collaborate... Read More →

Ray Paik

Community Manager, PingCAP

Ray is a Community Manager at PingCAP where he is helping to grow the TiDB community. Prior to PingCAP, Ray managed open source communities at Cube Dev, GitLab and the Linux Foundation. Ray has been a speaker at open source conferences such as All Things Open, Community Leadership... Read More →

Tuesday June 24, 2025 2:10pm - 2:50pm MDT
Bluebird Ballroom 3F

OSPOCon

Audience Experience Level Beginner

2:10pm MDT

Unconference

Tuesday June 24, 2025 2:10pm - 2:50pm MDT

Bluebird Ballroom 2H

Do you have a topic you’d like to discuss with fellow attendees? A project or idea you want to share and get feedback on? Something you'd like to teach others? Sign up to lead an Unconference session!
Sessions are informal, attendee-driven, and a great way to connect with others. There will be no AV—only a flip chart will be provided.
You can sign up in advance using this form by June 13, or onsite at the event in the Solutions Showcase - Bluebird Ballroom 1AB. Once your time slot is confirmed, it will be added to the official conference schedule so other attendees can join your session onsite.
Click here to view the Unconference schedule. Be sure to check out the topics being discussed and join us onsite for great conversations!

Tuesday June 24, 2025 2:10pm - 2:50pm MDT
Bluebird Ballroom 2H

Unconference Sessions

2:10pm MDT

Valkey in Telecom: Leveraging Open Source for Unique Needs and Greater Community Benefits - David Östman & Viktor Söderqvist, Ericsson Software Technology

Tuesday June 24, 2025 2:10pm - 2:50pm MDT

Bluebird Ballroom 2E

The telecom industry constantly evolves to meet the demands of modern communication.
As a supporter of the Linux Foundation Valkey project, this presentation will explore other ways to utilize Valkey compared to many cloud providers, and the benefits this brings to the community and the project itself.

We will discuss the technical aspects of Valkey's use in telecom, drawing from insights for the advantages of public forks managed by foundations, leading to faster and more expansive development.

Our company was one of the founding supporters of Valkey, and Viktor Söderqvist is a core maintainer of Valkey. We will cover how we integrate community engagement and governance, David as a manager and Viktor maintainer and our collaborative efforts together.

We'll highlight our contributions to Valkey, and the discussions that led to our strategic pivot and fork and creation Valkey.

We will also present unique requirements in telecom that has been added to Valkey, and demonstrate how these requirements also benefit the broader project, with features like downgrade mechanisms and key hash improvements for higher performance.

Speakers

David Östman

General Manager Ericsson Software Technology Sweden, Ericsson

Viktor Söderqvist

Open source dev, Ericsson Software Technology

Viktor is an open source developer at Ericsson, contributing to several projects. The last few years, he was contributing to Redis, but recently his focus has been on Valkey, the open source fork of Redis, which he together with a few more active contributors forked and now maint... Read More →

Tuesday June 24, 2025 2:10pm - 2:50pm MDT
Bluebird Ballroom 2E

Wildcard

Audience Experience Level Any

2:10pm MDT

Build Zephyr for MicroBlaze-V FPGA Using Yocto Project - Sandeep Gundlupet Raju, AMD

Tuesday June 24, 2025 2:10pm - 2:50pm MDT

Bluebird Ballroom 2C

The Yocto Project can build for a variety of targets: Linux, Zephyr, baremetal, etc. Using multiconfig one can target a combination of these environments in one single configured build. Zephyr is a real-time operating system (RTOS) that is open source and hosted by the Linux Foundation. It’s an collaborative effort uniting developers and users in building a best-in-class small, scalable, real-time operating system (RTOS) optimized for resource-constrained devices, across multiple architectures.

This talk will discuss how to configure a multiconfig builds for MicroBlaze-V(RISC-V) FPGA using Yocto Project meta-zephyr, with integrated binary components for Zephyr using a System DeviceTree(SDT) processed through the lopper tool to generate Zephyr Kconfig, DTS and Multiconfig Configuration files for MB-V. The resulting configuration files are then used to build and package Zephyr including but not limited to the Zephyr Kernel and peripheral drivers using the Yocto Project.

Speakers

Sandeep Gundlupet Raju

Senior Member of Technical Staff - Yocto Project, AMD

Open Source enthusiast, Contributor to Yocto Project(poky, amd xilinx meta layers, meta-ros, meta-virtualization, meta-jupyter), OpenEmbedded, Lopper, AMD Xilinx Device-tree Generator, PetaLinux, Trusted Firmware-A (ATF), Linux Kernel and U-boot trees. Maintainer of AMD Xilinx Yocto... Read More →

Tuesday June 24, 2025 2:10pm - 2:50pm MDT
Bluebird Ballroom 2C

Zephyr

Audience Experience Level Intermediate

2:25pm MDT

Lightning Talk: Serving Guardrail Detectors on Vllm - Evaline Ju, IBM

Tuesday June 24, 2025 2:25pm - 2:35pm MDT

Bluebird Ballroom 3E

With the increase in generative AI model use, there is a growing concern of how models can divulge information or generate inappropriate content. This concern is leading to the development of technologies to “guardrail” user interactions with models. Some of these guardrails models are simple classification models, while others like IBM’s Granite Guardian or Meta’s Llama Guard are themselves generative models, able to identify multiple risks. As new models appear, a variety of large language model serving solutions are being developed and optimized. An open-sourced example, vllm, has become an increasingly popular serving engine.

In this talk I’ll discuss how we built an open-sourced adapter on top of vllm to serve an API for guardrails models, so that models like Granite Guardian and Llama Guard can be easily applied as guardrails in generative AI workflows.

Speakers

Evaline Ju

Senior Software Engineer, IBM

Evaline is a senior engineer working on the watsonx platform engineering team of IBM Research and based in Denver, Colorado. She currently focuses on building guardrails infrastructure for large language model workflows. Her previous experience includes MLOps for IBM’s cloud ML... Read More →

Tuesday June 24, 2025 2:25pm - 2:35pm MDT
Bluebird Ballroom 3E

Open AI + Data

Audience Experience Level Intermediate

2:30pm MDT

Intelligent CI/CD Pipelines: Leveraging AI/ML for Predictive Failure Detection - Aishwarya Sharma, Amdocs; Anindita Tripathy, VMWare; Shubham Parasher, Dream11

Tuesday June 24, 2025 2:30pm - 2:50pm MDT

Bluebird Ballroom 3B

Modern CI/CD Pipelines generate vast amounts of build, test, and deployment data- making it challenging to detect issues before they impact production. In this session, we explore how AI and ML can transform your CI/CD process by predicting failures before they occur. You'll learn how to collect and process pipeline data(logs, test outcomes, resource metrics) to train models that detect subtle patterns indicative of future failures. This talk covers practical strategies for feature engineering, model integration using popular open source tools, and real-world case studies that demonstrate reduced downtime and optimised testing. Attendees will leave with a clear, actionable roadmap for embedding predictive analytics into their pipelines to drive proactive, resilient software delivery

Speakers

Aishwarya Sharma

DevOps Specialist, Amdocs

Aishwarya Sharma is a DevOps specialist with a passion for leveraging open source technologies to optimise CI/Cd pipelines and cloud operations. With expertise in integration AI/ML for predictive analytics, she empowers teams to enhance software deliver efficiently and resilience... Read More →

Anindita Tripathy

SRE, VMWare

Anindita Tripathy is working as SRE in VMWare, specialised in building, deploying, and maintaining cloud-based infrastructure and CI/CD pipelines. She has deep passion for optimizing workflows, ensuring high availability, and fostering collaboration between development and operations... Read More →

Shubham Parasher

Product Manager, Dream11

Shubham parasher is a product manager renowned for his expertise in managing products, cloud infrastructure and kubernetes solutions. Shubham has made significant contributions to the tech industry, particularly within the domain of fantasy sports and gaming platforms. Currently working... Read More →

Tuesday June 24, 2025 2:30pm - 2:50pm MDT
Bluebird Ballroom 3B

cdCon

Audience Experience Level Any

2:40pm MDT

Lightning Talk: Future-Proofing Compliance: Leveraging Knowledge Graphs and AI in Cybersecurity - Zeyno Dodd, Conjectura R&D

Tuesday June 24, 2025 2:40pm - 2:50pm MDT

Bluebird Ballroom 3E

Traditional approaches to cybersecurity compliance are being redefined in an era marked by rapidly evolving cybersecurity threats and stringent compliance requirements. This session explores the innovative integration of Knowledge Graphs (KG) and Retrieval Augmented Generation (RAG) with Generative AI to address the ever-evolving complexities of cybersecurity frameworks like NIST CSF v2.0, NIST 800-171, and CMMC. I will briefly delve into an open-source proof-of-concept demonstrating how these technologies can automate the discovery of compliance relationships and streamline cross-framework assessments. Join me in discovering how we can significantly enhance cybersecurity measures by harnessing open-source tools and AI, reducing the resource burden, and maintaining timely and robust adherence to evolving standards.

Speakers

Zeyno Dodd

R&D Architect, Conjectura R&D

Cloud Solution Architect and Researcher with 25+ years in software development and research. Committed to leveraging AI to address complex real-world challenges with societal impact. Specializes in applying Graph Neural Networks (GNN) within Cloud/Edge/Hybrid Machine Learning frameworks... Read More →

Tuesday June 24, 2025 2:40pm - 2:50pm MDT
Bluebird Ballroom 3E

Open AI + Data

Audience Experience Level Any

3:05pm MDT

Transforming Software Development and Engineering Velocity at EBay With AI/ML in CI/CD - Aravind Kannan, eBay Inc. & Sanmeet Shikh, eBAy

Tuesday June 24, 2025 3:05pm - 3:25pm MDT

Bluebird Ballroom 3B

In today's digital landscape, rapid and reliable software delivery is crucial. Join us to explore how eBay has integrated AI and ML into its Continuous Integration and Continuous Deployment (CI/CD) processes, revolutionizing software development at scale.

We will share insights from eBay's "Engineering Velocity" initiative, detailing how our AI and ML powered CI/CD platform helped our engineers in achieving a 23% increase in software releases and a 10% reduction in production bugs.

This session will cover:

* The strategic implementation of AI and ML in CI/CD to enhance efficiency and quality.
* Real-world examples of how AI-driven insights and automation have streamlined our software development, review, testing, debugging and delivery process.
* Key challenges and lessons learned in integrating AI and ML technologies into the CI/CD platform.
* Future trends and opportunities in AI and ML for CI/CD.

Whether you're an engineering leader, developer, or DevOps practitioner, gain insights and strategies to leverage AI and ML for faster, more reliable software delivery.

Speakers

Aravind Kannan

Director, Software Engineering, eBay Inc.

Aravind Kannan leads eBay's transformative Engineering Velocity initiative, responsible for driving improvements in software development and delivery platforms and processes across the organization. He is committed to empowering engineers to deliver value to customers faster, easier... Read More →

Sanmeet Shikh

Sr. MTS Software Engineer, eBAy

Technical Lead for CI/CD platform at eBay

Tuesday June 24, 2025 3:05pm - 3:25pm MDT
Bluebird Ballroom 3B

cdCon

Audience Experience Level Any

3:05pm MDT

Apache Gravitino: A Multi-regional, Geo-distributed Meta Datalake - Justin Mclean, Datastrato

Tuesday June 24, 2025 3:05pm - 3:45pm MDT

Bluebird Ballroom 2F

Managing metadata can be complex and time-consuming, but Apache Gravitino offers the ultimate solution. It provides a single source of truth for multi-regional data with geo-distributed architecture support. This allows you to store and manage your data in one place, accessible from anywhere globally. With unified data and AI asset management, you get centralized security and data access management, making data protection easier. Gravitino helps you focus more on your data by simplifying tasks and offering these benefits:
- Secure and centralized metadata storage and management
- Anytime, anywhere data access
- Streamlined data management with an easy-to-use UI
Gravitino is the ideal solution for simplifying metadata management processes.

Speakers

Justin Mclean

Community Manager, Datastrato

Justin Mclean is a highly experienced professional with over 30 years in web application development, education, and community work, and is an active contributor to open source software. Justin is a renowned speaker at conferences worldwide and currently serves as the Community Manager... Read More →

Tuesday June 24, 2025 3:05pm - 3:45pm MDT
Bluebird Ballroom 2F

Cloud + Containers

Audience Experience Level Beginner

3:05pm MDT

Noisy Neighbor Detection: A New OSS Collector - Jonathan Perry, Unvariance

Tuesday June 24, 2025 3:05pm - 3:45pm MDT

Bluebird Ballroom 2G

Why do some requests take so much longer than others? A major contributor, memory-related contention between containers, was shown to increase latency by 4-13x. It can be triggered by garbage collection, and existing observability cannot even detect it! Current collectors just show high CPU utilization, and the standard mitigation is to scale out and run at low utilization: expensive, and does not solve the response time problem.

We set out to build a new detector, but found that measuring every few seconds (current practice for collectors) is inadequate. Servers quickly jump between intense resource competition and under-utilization, so averaging over seconds does not show any contention. We needed measurements at millisecond frequency.

This session first examines real-world patterns that trigger interference and surveys methods for detecting memory interference, including findings from Google, Alibaba, and Meta's production environments. We'll then discuss the design of the OSS collector, and how it combines CPU performance counters, eBPF and high-resolution timers to identify noisy neighbors. We close with future directions and opportunities to get involved.

Speakers

Jonathan Perry

CEO, Unvariance

Tuesday June 24, 2025 3:05pm - 3:45pm MDT
Bluebird Ballroom 2G

Cloud + Containers

Audience Experience Level Intermediate

3:05pm MDT

Scaling Inclusive Open Source: Strategies & Metrics for Building Equitable Communities - Kenyatta Forbes, GitHub

Tuesday June 24, 2025 3:05pm - 3:45pm MDT

Bluebird Ballroom 3G

Open source thrives on collaboration, but who gets to participate, and how? GitHub’s latest Open Source Survey provides key insights into the state of diversity, equity, inclusion, and accessibility (DEIA) in open source communities—revealing persistent challenges and opportunities for change.
In this session, we’ll explore data-backed strategies for fostering inclusivity at scale, blending insights from GitHub’s research with real-world case studies from diverse open source communities.

We’ll cover:
Key findings from GitHub’s Open Source Survey on inclusivity trends, barriers, and participation gaps.

Proven strategies for increasing diversity in open source projects, including best practices from GitHub’s programs and successful open source initiatives.

Lessons from the field: Case studies of communities that have successfully improved inclusion through mentorship, governance changes, and innovative outreach.

Metrics that matter: How to track progress in DEIA efforts without falling into vanity metrics.

Speakers

Kenyatta Forbes

Sr. Program Manager, Open Source Programs, GitHub

Kenyatta Forbes is the Senior Program Manager for the Open Source Programs Team at GitHub, where she leads strategic initiatives to support the growth and sustainability of open source communities. With over a decade of experience in technology and program management, she enjoys fostering... Read More →

Tuesday June 24, 2025 3:05pm - 3:45pm MDT
Bluebird Ballroom 3G

Equity + Inclusion + Accessibility

Audience Experience Level Any

3:05pm MDT

Enhancing Scalability of the Vmalloc Mechanism in the Linux Kernel - Adrian Huang, Lenovo & Uladzislau Rezki, Sony

Tuesday June 24, 2025 3:05pm - 3:45pm MDT

Bluebird Ballroom 2D

The vmalloc mechanism in the Linux kernel provides contiguous virtual memory allocations, even when the underlying physical memory is non-contiguous. However, with increasing adoption and usage, the synchronization of vmalloc data structures poses significant performance challenges, particularly in many-core systems with 256+ cores.

This session will explore the scalability improvements made to the vmalloc mechanism, covering the following key topics:

1. An overview of the legacy vmalloc approach, which relies on a single global lock for data synchronization.

2. Introduction to an enhanced vmap node implementation designed to address the limitations of the legacy approach.

3. Identification and detailed analysis of two remaining performance bottlenecks despite the enhanced vmap node implementation, along with their proposed solutions.

Join us to gain insights into the evolving design of vmalloc and its implications for performance in modern high-core-count systems.

Speakers

Adrian Huang

Senior Engineer, Lenovo

Adrian Huang is a Senior Linux Engineer in the Lenovo Infrastructure Solutions Group (ISG) based in in Taipei, Taiwan. He has experience with Linux kernel IOMMU subsystem, Linux kernel synchronization, Linux kernel interrupt mechanism and memory management.

Uladzislau Rezki

Embedded developer, Sony

My name is Uladzislau Rezki. I am 43 years old. I am married and live with my wife in Sweden, Lund. I graduated from the University in Belarus, since 2011 i moved and work in Sony in Sweden until now. I do some ports, play table tennis, running we both love to walk in the forest... Read More →

Tuesday June 24, 2025 3:05pm - 3:45pm MDT
Bluebird Ballroom 2D

Linux

Audience Experience Level Intermediate

3:05pm MDT

Universal AI: Execute Your Models Where Your Data (And Users) Are - David Aronchick, Expanso

Tuesday June 24, 2025 3:05pm - 3:45pm MDT

Bluebird Ballroom 3E

Data is exploding across distributed locations, but centralized processing is increasingly unsustainable. This talk explores "compute over data" architectures that bring ML to your data, unlocking new possibilities through real-world examples.

Speakers

David Aronchick

CEO, Expanso

Tuesday June 24, 2025 3:05pm - 3:45pm MDT
Bluebird Ballroom 3E

Open AI + Data

Audience Experience Level Intermediate

3:05pm MDT

The Open Source Solution That Actually Works - Syed Usman Ahmad, Grafana Labs

Tuesday June 24, 2025 3:05pm - 3:45pm MDT

Bluebird Ballroom 3A

When you are running an application that contains primary ingredients such as Java, MySQL, Mail Service etc. and all fused up together to be as one, then it is no surprise that you need to rely on more than one monitoring solution. But imagine if there is a one single solution that can bring up the Logs, Metrics, Traces and even Profiling and on top of that, it is completely Open Source? Well, you are in luck, as in this talk we will demonstrate an example on how to monitor your applications by using Grafana and use various integrations and plugins. Later, we will see more advanced features to get key metrics for better observability.

It will be an introduction to the Dashboards, and also an excellent opportunity to learn more about the advanced features, including troubleshooting & debugging.

Join us to learn more about Grafana dashboards, community contributions and share your feedback and suggestions!

Speakers

Syed Usman Ahmad

Senior Developer Advocate, Grafana Labs

Usman is a Senior Developer Advocate at Grafana Labs from Nuremberg, Germany and works with the Open Source community on the community forum, GitHub and Slack. He has over 15 years of experience in IT and Cloud Support where he served multiple customers all over EU, US and Japan... Read More →

Tuesday June 24, 2025 3:05pm - 3:45pm MDT
Bluebird Ballroom 3A

Open Source 101

Audience Experience Level Intermediate

3:05pm MDT

Navigating FINTECH’s Regulatory Waters With InnerSource - Brittany Istenes, FINOS Ambassador, ToDo Group Steering Committee & Russell Rutledge, InnerSource Commons

Tuesday June 24, 2025 3:05pm - 3:45pm MDT

Bluebird Ballroom 3F

The financial industry is navigating an ocean of regulations, where compliance and innovation often feel like opposing forces. But what if there was a way to align them? Enter InnerSource—the open-source-inspired approach that fosters collaboration, accelerates development, and enhances regulatory transparency within financial institutions. Explore how the InnerSource Commons Foundation and the FINOS foundation are partnering to navigate the murky waters of regulation within the concept of openness inside of the FINTECH industry.

In this session, Brittany Istenes (FINOS) and Russ Rutledge (InnerSource Commons) will share how they are using InnerSource principles and guidance as a life preserver to help FINTECH firms navigate regulatory challenges.

Join us to explore real-world success stories and actionable strategies that demonstrate how InnerSource can transform challenges into opportunities for innovation to sail into calmer seas.

Speakers

Brittany Istenes

OSPO Strategist, FINOS Ambassador, ToDo Group Steering Committee Member

Russell Rutledge

Executive Director, InnerSource Commons

Russ Rutledge is the Senior Director of InnerSource and Collaboration at WellSky, a leading technology company offering a range of software solutions that help organizations across the healthcare continuum. In this role, Russ is leading a transformational change in the company towards... Read More →

Tuesday June 24, 2025 3:05pm - 3:45pm MDT
Bluebird Ballroom 3F

OSPOCon

Audience Experience Level Intermediate

3:05pm MDT

Unconference

Tuesday June 24, 2025 3:05pm - 3:45pm MDT

Bluebird Ballroom 2H

Do you have a topic you’d like to discuss with fellow attendees? A project or idea you want to share and get feedback on? Something you'd like to teach others? Sign up to lead an Unconference session!
Sessions are informal, attendee-driven, and a great way to connect with others. There will be no AV—only a flip chart will be provided.
You can sign up in advance using this form by June 13, or onsite at the event in the Solutions Showcase - Bluebird Ballroom 1AB. Once your time slot is confirmed, it will be added to the official conference schedule so other attendees can join your session onsite.
Click here to view the Unconference schedule. Be sure to check out the topics being discussed and join us onsite for great conversations!

Tuesday June 24, 2025 3:05pm - 3:45pm MDT
Bluebird Ballroom 2H

Unconference Sessions

3:05pm MDT

Solving the Phantom Dependency Problem for Python Packages - Seth Larson, Python Software Foundation

Tuesday June 24, 2025 3:05pm - 3:45pm MDT

Bluebird Ballroom 2E

Endor Labs coined the term "Phantom Dependency Problem" to describe dependencies that are bundled into software packages but not represented in the package metadata. This is common in many software package ecosystems, but it is most prevalent in the Python package ecosystem (PyPI) where many packages include compiled C, C++, and Rust dependencies.

Bundled software not being included in package metadata is meaning means that software composition analysis (SCA), SBOM, and vulnerability scanning tools are not able to detect the bundled software. This can cause vulnerabilities to be missed and make.

The Security Developer-in-Residence at the Python Software Foundation, Seth Larson, worked on solving to the Phantom Dependency problem for Python packaging, involving work on standards and tooling.

By the end of this session attendees will understand the Phantom Dependency problem, how it relates to Python and other packaging ecosystems, how SBOM and SCA tools work, and what work was done to make bundled dependencies measurable and what that means for users.

Speakers

Seth Larson

Security Developer-in-Residence, Python Software Foundation

Seth is the Security Developer-in-Residence at the Python Software Foundation working to improve the security posture of the Python ecosystem. Seth maintains widely used open source Python projects like urllib3, truststore, and Requests.

Tuesday June 24, 2025 3:05pm - 3:45pm MDT
Bluebird Ballroom 2E

Wildcard

Audience Experience Level Intermediate

3:05pm MDT

Simulating Embedded Systems With Zephyr - Mohammed Billoo, MAB Labs Embedded Solutions

Tuesday June 24, 2025 3:05pm - 3:45pm MDT

Bluebird Ballroom 2C

Hardware availability is among the many challenges embedded software engineers face when working on new designs. In the case of MCU-based applications, embedded software engineers need to wait for the hardware to arrive to validate portions of their application that exercise the underlying hardware. Additionally, if the application is part of a network and the network can contain hundreds or thousands of nodes, engineers may find it difficult to evaluate their design when the network is under load. Fortunately, The Zephyr Project RTOS has the infrastructure to allow embedded software engineers to evaluate as much of their design with access to the necessary hardware. In this talk, I will walk through these tools and how they can be used to evaluate the embedded software design before hardware is ready. The tools covered in this talk will be QEMU, BabbleSim, and Renode. They will be showcased with code, invocations, and results to demonstrate their value.

Speakers

Mohammed Billoo

CEO, MAB Labs Embedded Solutions

Mohammed Billoo is an embedded software consultant with over 15 years of experience. He focuses on The Zephyr Project RTOS, Embedded Linux, and The Yocto Project. He has also developed user interfaces using the Qt framework. He has helped clients across numerous verticals, including... Read More →

Tuesday June 24, 2025 3:05pm - 3:45pm MDT
Bluebird Ballroom 2C

Zephyr

Audience Experience Level Intermediate

3:25pm MDT

Lightning Talk: Paved Paths, Not Potholes: Simplifying Multi-Tenancy in Internal Platforms - Faeka Ansari, Akuity, Inc.

Tuesday June 24, 2025 3:25pm - 3:35pm MDT

Bluebird Ballroom 3B

Internal developer platforms can make or break developer productivity. Many organizations struggle to balance scalability, flexibility, and usability when building these internal platforms, especially in multi-tenant environments. Yet, designing streamlined workflows that balance governance with developer autonomy often feels like navigating pothole-filled roads. In this talk, I will explore real-world lessons and open source tools from building GitOps-driven paved paths that simplify complex multi-environment workflows.

Learn how declarative principles, automated pipelines, and GitOps practices can transform developer frustration into delight. Whether you're improving namespace management, scaling day 2 operations, or accelerating platform adoption, this talk should leave you with usable tools and fresh ideas for your platform engineering journey.

Speakers

Faeka Ansari

Kubernetes Sub-Project Maintainer | Kargo Maintainer | CNCF Ambassador, Akuity, Inc.

Faeka Ansari is a sub-project maintainer for Kubernetes and a key maintainer of the Kargo project. With expertise in designing & optimizing Kubernetes controllers, she specializes in streamlining workflows and improving developer experience. She has previously contributed to cloud-native... Read More →

Tuesday June 24, 2025 3:25pm - 3:35pm MDT
Bluebird Ballroom 3B

cdCon

Audience Experience Level Any

3:35pm MDT

Lightning Talk: Shift Left With AI: Smarter Code Reviews for DevOps Acceleration - Vaibhav Tupe, Equinix

Tuesday June 24, 2025 3:35pm - 3:45pm MDT

Bluebird Ballroom 3B

In the fast-paced world of CI/CD, traditional code reviews can become a bottleneck, slowing down development and introducing risks due to human errors or inconsistencies. What if you could have an AI-powered assistant that reviews your code in real-time, providing actionable insights, detecting security vulnerabilities, and ensuring compliance—all while integrating seamlessly into your DevOps pipeline?

This session explores how Generative AI is transforming code reviews in CI/CD environments. We will dive into how AI-driven assistants can enhance developer productivity, improve code quality, and automate security and compliance checks.

We will cover:
The challenges of traditional code reviews in modern CI/CD workflows
How Generative AI enhances automated code reviews for speed and accuracy
Real-world use cases and best practices for integrating AI-powered code review assistants into your pipelines
The impact of AI on security, compliance, and developer experience
By the end of this session, you’ll understand how to leverage AI to make your CI/CD pipelines smarter, faster, and more secure—reducing friction in your development lifecycle while ensuring high-quality code.

Speakers

Vaibhav Tupe

Tech Lead, Equinix

Vaibhav Tupe is a distinguished Technology Advisory Board Member and Engineering Leader specializing in cybersecurity, cloud, and AI-ready data center infrastructure. With over 13 years of experience, he currently serves as a Technology Leader at Equinix USA, where he drives high-performance... Read More →

Tuesday June 24, 2025 3:35pm - 3:45pm MDT
Bluebird Ballroom 3B

cdCon

Audience Experience Level Beginner

3:45pm MDT

Coffee Break

Tuesday June 24, 2025 3:45pm - 4:20pm MDT

Solutions Showcase - Bluebird Ballroom 1AB

Tuesday June 24, 2025 3:45pm - 4:20pm MDT
Solutions Showcase - Bluebird Ballroom 1AB

Special Events / Exhibits / Breaks

4:20pm MDT

Session to be Announced

Tuesday June 24, 2025 4:20pm - 5:00pm MDT

Bluebird Ballroom 3B

Tuesday June 24, 2025 4:20pm - 5:00pm MDT
Bluebird Ballroom 3B

cdCon

4:20pm MDT

Intuit Journey To Unified Observability at Scale: Challenges, Benefits and Lessons Learned - Kalyan Kolachala & Ashwini Dulam, Intuit

Tuesday June 24, 2025 4:20pm - 5:00pm MDT

Bluebird Ballroom 2F

At Intuit we have ~320 Kubernetes clusters running with ~8000 services and ~40 addons in a cluster which generate ~2 billion active time series metrics, 10 million Trace spans/sec and ~ 1.2PB of log data ingested (peak) in a single day. This talk focuses on Intuit’s journey from standalone, siloed, proprietary solutions for logs, metrics and traces to a unified observability solution. This is made possible with a data management architecture that enables seamless navigation and correlation between different observability pillars, usage of AI/ML techniques to quickly detect and isolate problems, UX that brings all the elements of data discovery with an interactive experience and high level features like golden signals, RUM (real user monitoring) and FCI (failed customer interactions). All of this leading to significantly lower MTTD and MTTI. We also discuss the challenges, choices, trade offs, benefits and lessons learned during this journey.

Speakers

Kalyan Kolachala

Director, Development and site head, Intuit

Kalyan is a senior engineering leader with experience in delivering world class, enterprise products and platforms involving SaaS, Kubernetes, Cloud, big data, AI/ML, IoT and observability. At the current job at Intuit and previously at Hitachi Vantara, he has been responsible for... Read More →

Ashwini Dulam

Principal Engineer, Intuit

Ashwini is a Principal Software Engineer for the Intuit Observability and Analytics team in Bangalore, India. One of Ashwini’s current day-to-day focus areas is on the various challenges in building scalable, data and AIOps solutions for solving problems in the observability domain... Read More →

Tuesday June 24, 2025 4:20pm - 5:00pm MDT
Bluebird Ballroom 2F

Cloud + Containers

Audience Experience Level Intermediate

4:20pm MDT

Unveiling Arm Confidential Computing Architecture Software Stack - Kevin Zhao, Linaro

Tuesday June 24, 2025 4:20pm - 5:00pm MDT

Bluebird Ballroom 2G

As confidential virtual machines become mainstream in confidential computing, the Arm Confidential Computing Architecture (CCA) was introduced as a key innovation of Arm v9 in 2021. Linaro has been deeply involved in integrating CCA into open-source projects over the past years.
In this presentation, we'll share the progress of our open-source enablement efforts. This includes the current status of fundamental software support and the next-stage plan for projects such as TF - A, Kernel, and Qemu. We'll also talk about container runtime adoption in Kata containers and Confidential containers. For instance, we'll detail the work on supporting CCA in Kata container runtimes with Qemu backend, like in kata-deploy. The support for guest-components and Trustee in Confidential containers will be covered too.
Remote attestation is another crucial aspect that can't be overlooked. To reduce solution fragmentation in open-source projects for production, Arm and Linaro are collaborating on an end-to-end experimental attestation platform using Veraison project components. We'll present a case study from the Confidential Containers project to show the practical adoption of these technologies.

Speakers

Kevin Zhao

Senior Tech Lead, Linaro

Kevin Zhao is currently the tech lead at Linaro Data Center Group. He has been working on Arm server ecosystem for more than 8 years, including the open source IAAS solutions, distribute storage and confidential computing. Now, he is actively working on Arm Confidential Computing... Read More →

Tuesday June 24, 2025 4:20pm - 5:00pm MDT
Bluebird Ballroom 2G

Cloud + Containers

Audience Experience Level Beginner

4:20pm MDT

Boot-Time BOF - Tim Bird, Sony

Tuesday June 24, 2025 4:20pm - 5:00pm MDT

Bluebird Ballroom 2B

In this BOF, attendees will discuss the current status of Linux Boot, and boot-time reduction efforts for Linux systems. This will be an open discussion about the currently available tools, instrumentation, techniques, patches, documentation and online resources for developers working on Linux boot-time reduction.

If you are working on Linux boot-time, or plan to sometime in the near future, please join this discussion. You can describe your requirements, or tell us about your current Linux boot-time reduction activities or projects.

Speakers

Tim Bird

Principal Software Engineer, Sony

Tuesday June 24, 2025 4:20pm - 5:00pm MDT
Bluebird Ballroom 2B

Embedded Linux Conference

Audience Experience Level Any

4:20pm MDT

Unlocking the Full Potential of WPE To Build a Successful Embedded Product - Mario Sanchez-Prada, Igalia

Tuesday June 24, 2025 4:20pm - 5:00pm MDT

Bluebird Ballroom 2A

The Web engine is the most important component of a Web browser, enabling developers to leverage the Web Platform for their applications. And thanks to Open Source Web engines like WPE, it is now possible to build all kinds of products for embedded devices using Web-based technologies, from set-top boxes and smart home appliances to GPS devices and in-flight infotainment systems, to name a few.

Unfortunately, companies usually fall into the trap of applying one-off fixes to meet their immediate needs, accumulating technical debt and struggling to adapt to the evolving nature of the Open Source projects they heavily rely on. On top of that, it makes it difficult to ensure that the stable releases of such projects properly fit the needs of the products they intend to build, leading to spending too much time being reactive to integration-related problems instead of focusing on building a great product.

In this session, we will focus on explaining the best practices to unlock the full power of WPE without falling into such traps, so that you can focus on building a stronger foundation for your future embedded products with WPE, while keeping maintenance costs under control.

Speakers

Mario Sanchez-Prada

Software Engineer and WebKit Team coordinator at Igalia, Igalia

Software engineer and partner at Igalia with 19+ years of experience working on the development of Linux-based Operating Systems, the GNOME platform, Web engines (i.e. WebKit, Blink) and Web browsers (Epiphany, Chromium).Past experience includes work on the Maemo project, Litl OS... Read More →

Tuesday June 24, 2025 4:20pm - 5:00pm MDT
Bluebird Ballroom 2A

Embedded Linux Conference

Audience Experience Level Any

4:20pm MDT

DEI Is Dead: What Happens Next? - Jennifer "Jen" Madriaga, The LInux Foundation

Tuesday June 24, 2025 4:20pm - 5:00pm MDT

Bluebird Ballroom 3G

Many organizations, companies, and departments are now eliminating DEI programs, and with this development, you may be asking what happens next. Even though DEI programs may be disappearing, the conversation around what it entails will still exist. How do we frame the conversation now, and what can we do to advocate on behalf of underrepresented groups? I will walk through some ways in which we can move forward. As someone who had to work with a global audience, I found that the term DEI did not always resonate with everyone. From that experience, I had to find ways to discuss the issues that DEI was meant to address, such as disparity in experiences, perceptions around fairness, the need for better communication processes, and psychological safety on teams. We can use these lessons with a global audience that had different histories and cultural contexts to ensure that conversation is relevant for everyone.

Speakers

Jen Madriaga

Chief of Staff, Events, The Linux Foundation

Jen Madriaga has worked with numerous open source communities for over a decade through her work at Red Hat and the Linux Foundation. She is committed to building healthy and successful communities and interested in creating solutions collaboratively. While at Red Hat, she co-founded... Read More →

Tuesday June 24, 2025 4:20pm - 5:00pm MDT
Bluebird Ballroom 3G

Equity + Inclusion + Accessibility

Audience Experience Level Beginner

4:20pm MDT

The Life of a Kernel Bugfix - Thadeu Lima de Souza Cascardo, Igalia

Tuesday June 24, 2025 4:20pm - 5:00pm MDT

Bluebird Ballroom 2D

Ever wonder how a bug fix lands on the kernel you are running on your system?

Would you like to know how to effectively get such fixes in the hands of most users?

From the time it gets submitted for review until an update is available in a distro, a lot of processes need to be followed and many people are involved.

The talk will go over some of these processes, some of the obstacles that may get in the way and how to make it easier for the people who do the work to get these fixes into the hands of as many people as possible.

Speakers

Thadeu Lima de Souza Cascardo

Kernel developer, Igalia

Cascardo has contributed to the Linux kernel for more than 15 years, initially as a volunteer and as a consultant, and later as part of teams at companies like IBM, Red Hat, Canonical, and now at Igalia. Mostly contributing bug fixes, Cascardo has been one of the top 4.19.x backporters... Read More →

Tuesday June 24, 2025 4:20pm - 5:00pm MDT
Bluebird Ballroom 2D

Linux

Audience Experience Level Intermediate

4:20pm MDT

Gotta Cache 'em All: Scaling AI Workloads With Model Caching in a Hybrid Cloud - Rituraj Singh & Jin Dong, Bloomberg

Tuesday June 24, 2025 4:20pm - 5:00pm MDT

Bluebird Ballroom 3E

AI models are evolving rapidly, while also growing exponentially in size and complexity. As AI workloads become larger, it is crucial to address the challenges of rapidly scaling inference services during peak hours and how to ensure optimal GPU utilization for fine-tuning workloads. To tackle this, Bloomberg’s Data Science Platform team has implemented a “Model Cache” feature in the open source KServe project for caching large models on GPUs in a multi-cloud and multi-cluster cloud-native environment.

This talk discusses the challenges faced with hosting large models for inference and fine-tuning purposes, and how model caching can help mitigate some of these challenges by reducing load times during auto-scaling of services, improving resource utilization, and boosting data scientists’ productivity. The talk dives into how Bloomberg integrated KServe’s Model Cache into its AI workloads and built an API on top of Karmada to manage cache federation. AI infrastructure engineers will learn about the profound impact of enabling model caching and how teams can adopt this feature in their own AI infrastructure environment.

Speakers

Rituraj Singh

Software Engineer, Bloomberg LP

Rituraj Singh is a software engineer on Bloomberg’s Data Science Platform engineering team, which is focused on enabling large-scale AI model training on GPUs. Rituraj graduated from Carnegie Mellon University with a master's degree in computer engineering.

Jin Dong

Software Engineer, Bloomberg

Jin Dong is a software engineer at Bloomberg. He works on building an inference platform for machine learning with KServe.

Tuesday June 24, 2025 4:20pm - 5:00pm MDT
Bluebird Ballroom 3E

Open AI + Data

Audience Experience Level Intermediate

4:20pm MDT

A Beginner's Guide To Programming Quantum Computers With Open-Source Tools - Sagar Kesarpu & Harikrishna Muriki, Discover Financial Services

Tuesday June 24, 2025 4:20pm - 5:00pm MDT

Bluebird Ballroom 3A

Welcome to this exciting session that's all about diving into the world of quantum computing!
🚀 Whether you're just starting out or already have some knowledge, we're here to guide you through the basics and help you get hands-on with programming quantum computers using cool open-source tools.
Forget all the jargon – we're here to break it down for you in a friendly and easy-to-understand way. From qubits to quantum gates and circuits, we've got you covered! You'll get to play around with frameworks like Qiskit, Cirq, and Pennylane while writing and running simple quantum algorithms. It's like a fun tech playground! 🎮 Curious about how quantum computing differs from classical computing and its real-world applications? We'll explore that too! And let's not forget the amazing open-source quantum frameworks that are driving innovation in this field. We're talking Qiskit, Cirq, Pennylane, and more – all waiting for you to explore.

By the end of this session, you'll be equipped with the basics and practical skills needed to kickstart your journey into the quantum computing world. Perfect for developers, researchers, and tech enthusiasts like yourself!

🌟 Ready to take the plunge? Join us for an exciting adventure in the quantum computing ecosystem!

Topics we'll cover: - Introduction to Quantum Computing: Think qubits, superposition, and quantum gates – we'll make it crystal clear! - Quantum vs. Classical Computing: Let's explore the differences and get a glimpse of the potential applications. - Open-Source Quantum Frameworks: Discover the wonders of Qiskit, Cirq, Pennylane, and more! - Hands-On Programming: Get your hands dirty writing and running simple quantum algorithms – it's all about learning by doing! - Real-World Use Cases: See how quantum computing is making waves in cryptography, optimization, and machine learning. - Community and Resources: Find out how you can be part of the quantum journey and leverage open-source projects.

🌈 So, grab your virtual seat and get ready to unlock the magic of quantum computing with us! Let's make learning together a blast! 🌌🪐

Speakers

Sagar Kesarpu

Senior Principal Application Engineer, Discover Financial Services

Passionate about leveraging technology to drive innovation and solve technical problems. I am a tech enthusiast with a keen interest in cloud computing, open source and emerging technologies. With a curiosity-driven mid set and a commitment to continuous learning, I enjoy exploring... Read More →

Harikrishna Muriki

Senior Principal Application Engineer, Discover Financial Services

I'm deeply passionate about using technology to spark innovation and tackle the toughest technical challenges. As a true tech enthusiast, I’m all in when it comes to cloud computing, open-source solutions, and the latest cutting-edge technologies. Driven by curiosity and an unwavering... Read More →

Tuesday June 24, 2025 4:20pm - 5:00pm MDT
Bluebird Ballroom 3A

Open Source 101

Audience Experience Level Beginner

4:20pm MDT

Building the Future Developer: Trends in Open Source, Education, AI and Industry - Phoebe Quincy, GitHub & Kim Schlesinger, Contentful

Tuesday June 24, 2025 4:20pm - 5:00pm MDT

Bluebird Ballroom 3C

Over the past decade, open source and developer education have evolved dramatically. This talk explores key trends shaping the landscape, from shifts in bootcamp models and messaging to the role of open source in learning pathways. We'll examine what has persisted, what has transformed, and what these changes mean for educators, industry leaders, and learners. Whether you're building developer education programs, contributing to open source learning initiatives, or navigating the intersection of both, this session will provide valuable insights into the forces driving the future of developer education.

Key Themes:
- The evolution of bootcamps and CS degrees and the shifting narratives around developer training
- The enduring role of open source as both a learning tool and a career accelerant
- How industry expectations for self-taught and formally trained developers have changed
- The impact of AI and automation on developer education and skills acquisition

Speakers

Phoebe Quincy

Senior Program Manager, Education Programs, GitHub

Phoebe Quincy is a veteran advocate for developer education, specializing in open-source development and community engagement. She previously managed Hacktoberfest at DigitalOcean and now leads Education programs at GitHub, working to make open-source education more accessible, inclusive... Read More →

Kim Schlesinger

Technical Learning Experience Designer, Contentful

Kim Schlesinger is a seasoned tech educator specializing in Kubernetes, containers, and curriculum design. With a passion for making complex technical concepts accessible, she has helped many developers and teams build their skills in cloud-native technologies. Kim is currently a... Read More →

Tuesday June 24, 2025 4:20pm - 5:00pm MDT
Bluebird Ballroom 3C

Open Source Leadership

Audience Experience Level Beginner

4:20pm MDT

The O[S]PO Organization for the Age of AI - Paul Holland, Hewlett Packard Enterprise

Tuesday June 24, 2025 4:20pm - 5:00pm MDT

Bluebird Ballroom 3F

The rapid pace of innovation is accelerating, and the role of open technologies and methodologies (i.e., open source software, open AI, open data, open collaboration, etc.) have become increasingly critical to enable company competitiveness. Open Source Program Offices (OSPOs) have emerged as a best practice to facilitate company collaboration and innovation with open source software, yet this org pattern is flexible and scalable to other “opens”. Come explore how organizations can adapt their OSPOs to be Open Program Offices (OPOs) and respond to rapid advancements in openness, especially for open community AI.

In particular, we’ll discuss:
- How to optimize the OPO organization for AI – what is different and what is leverageable
- Practical approaches for embedding openness of all kinds into your organization
- Where best to locate an OPO in an organization and the implications of the options
- Extending to open standards and open hardware
- How to drive org alignment and shape your open strategy

Openness is more than a philosophy—it’s a competitive advantage for the future of AI and for community development of any size.

Speakers

Paul Holland

Director - Open Program Office, Hewlett Packard Enterprise

Paul is Director of Hewlett Packard Enterprise's Open Program Office, helping HPE teams drive the company's open technology strategy, engage in the right open communities, and comply with licensing. Paul has a B.S. in Computer Science from Colorado State University, an M.B.A. from... Read More →

Tuesday June 24, 2025 4:20pm - 5:00pm MDT
Bluebird Ballroom 3F

OSPOCon

Audience Experience Level Beginner

4:20pm MDT

Your Silent Software Saboteur: Open Source Malware - Brian Fox, Sonatype

Tuesday June 24, 2025 4:20pm - 5:00pm MDT

Bluebird Ballroom 2E

Weaponized open source components are silently infiltrating software supply chains, evading detection, and leaving organizations vulnerable to devastating attacks. Brian Fox, Co-founder and CTO of Sonatype, will pull back the curtain on this invisible threat, diving into the rise of malicious components that proliferate at an unprecedented rate.

Discover the stealthy tactics used to infiltrate networks, masquerading as legitimate software, and understand why traditional security solutions are failing. This session will provide the knowledge and tools to proactively protect software supply chains, blocking malicious components before they wreak havoc, and fortify defenses against this invisible and growing enemy.

Speakers

Brian Fox

Co-founder and CTO, Sonatype

Co-founder and CTO, Brian Fox is an OpenSSF Governing Board member, a member of the Apache Software Foundation and former Chair of the Apache Maven project. As a direct contributor to the Maven ecosystem, including the maven-dependency-plugin and maven-enforcer-plugin, he has over... Read More →

Tuesday June 24, 2025 4:20pm - 5:00pm MDT
Bluebird Ballroom 2E

Wildcard

Audience Experience Level Any

4:20pm MDT

West: Explained in Simple Words - Roy Jamil, AC6

Tuesday June 24, 2025 4:20pm - 5:00pm MDT

Bluebird Ballroom 2C

Engineers coming from traditional RTOS or bare metal backgrounds may initially see Zephyr's meta-tool, West, as an unfamiliar hurdle. While it might seem a bit complex at first, West is actually a simple and effective way to handle multiple repositories, as well as to build, debug, analyze, and more.

In this talk, we’ll break down what West does and how it fits into the Zephyr ecosystem. We'll use plain language and practical examples, showing that West isn’t a barrier at all. Instead, it’s a powerful tool that makes managing your projects easier and more organized.

We'll also explore why West exists and dive into its range of commands. Plus, we'll highlight the opportunities it offers, including enabling capabilities that were not possible without it.

Finally, we’ll demonstrate how to create custom commands with West and provide examples of how you might tailor these commands to meet the specific needs of your applications.

Speakers

Roy Jamil

Training engineer - PhD, AC6

Roy Jamil, with a PhD in the field of Asymmetric Multiprocessing (AMP) and real-time embedded systems, is a training engineer at Ac6. He has trained hundreds of engineers annually. His experience includes programming, Linux, writing Linux drivers, Yocto, and various Real-Time Operating... Read More →

Tuesday June 24, 2025 4:20pm - 5:00pm MDT
Bluebird Ballroom 2C

Zephyr

Audience Experience Level Any

5:00pm MDT

Tux Trek

Tuesday June 24, 2025 5:00pm - 6:30pm MDT

Solutions Showcase - Bluebird Ballroom 1AB

When sessions conclude, connect with fellow attendees over refreshing drinks, and tasty appetizers, at the Tux Trek! Head to the Solutions Showcase to network, explore cutting-edge sponsor products and check out the latest tech trends. Here's to an evening of enjoyment and technological innovation!

Tuesday June 24, 2025 5:00pm - 6:30pm MDT
Solutions Showcase - Bluebird Ballroom 1AB

Special Events / Exhibits / Breaks

8:00am MDT

Continental Breakfast

Wednesday June 25, 2025 8:00am - 9:00am MDT

Bluebird Ballroom Foyer (Level 1 - Terrace Level)

Wednesday June 25, 2025 8:00am - 9:00am MDT
Bluebird Ballroom Foyer (Level 1 - Terrace Level)

Special Events / Exhibits / Breaks

8:00am MDT

Hacker Space

Wednesday June 25, 2025 8:00am - 5:00pm MDT

Bluebird Ballroom Foyer - Space behind the escalators

Wednesday June 25, 2025 8:00am - 5:00pm MDT
Bluebird Ballroom Foyer - Space behind the escalators

Special Events / Exhibits / Breaks

8:00am MDT

Registration & Badge Pick-Up

Wednesday June 25, 2025 8:00am - 5:00pm MDT

Bluebird Ballroom Foyer (Level 1 - Terrace Level)

Wednesday June 25, 2025 8:00am - 5:00pm MDT
Bluebird Ballroom Foyer (Level 1 - Terrace Level)

Special Events / Exhibits / Breaks

8:00am MDT

Zen Zone

Wednesday June 25, 2025 8:00am - 5:00pm MDT

712 Meeting Room (Level 3 - Street Level)

Wednesday June 25, 2025 8:00am - 5:00pm MDT
712 Meeting Room (Level 3 - Street Level)

Special Events / Exhibits / Breaks

8:00am MDT

Coat & Bag Check

Wednesday June 25, 2025 8:00am - 5:30pm MDT

607 Meeting Room (Level 3 - Street Level)

Wednesday June 25, 2025 8:00am - 5:30pm MDT
607 Meeting Room (Level 3 - Street Level)

Special Events / Exhibits / Breaks

9:00am MDT

Keynotes to be Announced

Wednesday June 25, 2025 9:00am - 10:20am MDT

Bluebird Ballroom 1C (Level 1 - Terrace Level)

Wednesday June 25, 2025 9:00am - 10:20am MDT
Bluebird Ballroom 1C (Level 1 - Terrace Level)

Keynote Sessions

10:20am MDT

Coffee Break

Wednesday June 25, 2025 10:20am - 11:00am MDT

Solutions Showcase - Bluebird Ballroom 1AB

Wednesday June 25, 2025 10:20am - 11:00am MDT
Solutions Showcase - Bluebird Ballroom 1AB

Special Events / Exhibits / Breaks

10:20am MDT

Solutions Showcase

Wednesday June 25, 2025 10:20am - 2:10pm MDT

Solutions Showcase - Bluebird Ballroom 1AB

Wednesday June 25, 2025 10:20am - 2:10pm MDT
Solutions Showcase - Bluebird Ballroom 1AB

Special Events / Exhibits / Breaks

11:00am MDT

From CDEvents To Actions: Designing the Workflow Conductor - Dadisi Sanyika & Ben Powell, Apple

Wednesday June 25, 2025 11:00am - 11:20am MDT

Bluebird Ballroom 3B

The CDEvents specification has been around for some time but what are "we" doing with it? This talk peels back the layers of our journey from CDEvents to the engineering design of a "Workflow Conductor". We will examine how specific events can be translated into actionable steps, enabling the Workflow Conductor to manage and coordinate diverse CI/CD tools. The focus will be on how the declaration of intent is tracked across tools, maintaining a consistent and auditable process. Join us to discover the technical underpinnings of this system and learn how it can transform your software delivery pipeline.

Speakers

Dadisi Sanyika

CDF Board Chair, Spinnaker TOC, Engineering Manage, Apple, Inc.

Ben Powell

Software Engineer, Apple

Ben is a software engineer at Apple for the Spinnaker team with previous experience at AWS for the AWS SDK and ECS team. He has contributed to various different tools, services, and proposals through the years, governs the Cloud SIG for Spinnaker, and is an active participant for... Read More →

Wednesday June 25, 2025 11:00am - 11:20am MDT
Bluebird Ballroom 3B

cdCon

Audience Experience Level Intermediate

11:00am MDT

Turning Policies, Standards, and Governance Into Enablers for Open-Source Innovation - Mark Paulsen, TD Bank

Wednesday June 25, 2025 11:00am - 11:20am MDT

Bluebird Ballroom 2F

Policies, standards, and governance are often perceived as hurdles for innovation - especially within regulated industries where it may be difficult to leverage and contribute to open-source. But there is a way to reframe these perceived obstacles and turn them into streamlined "guardrails" that can help drive innovation and enable the ability to not only consume, but also contribute to open-source.

Speakers

Mark Paulsen

Head, Open-Source Program Office, TD Bank

Over 20 years of experience in the tech industry working in startup environments as well as global enterprises. Passionate about building open and welcoming communities and helping developers around the world be successful, keep in the flow, and be happy in the job they love.

Wednesday June 25, 2025 11:00am - 11:20am MDT
Bluebird Ballroom 2F

Standards + Specifications

Audience Experience Level Beginner

11:00am MDT

The 5 OSS Observability Resource Killers: What You Don't Know Can Cost You! - Amir Jakoby, Sawmills

Wednesday June 25, 2025 11:00am - 11:40am MDT

Bluebird Ballroom 2G

Our cloud native world has become more than just tooling, it's an entire ecosystem with many add-ons, complementary tools, when it comes to K8s CRDs, and services that provide its powerful capabilities and infinite scale...but at what cost?

In this talk, we'll share first of its kind research that will highlight the 5 most common OSS cloud native tools killing your observability costs. We'll start by exploring how different observability tools structure pricing, the complexities that compound cost calculation, and especially which OSS tools in your stack are the most resource-intensive services.

You'll discover how you can know whether it's KEDA or Karpenter, ArgoCD or Kyverno ballooning budgets. But don't panic! We'll wrap up with good practices for configuring popular tools to be more economical, so you can leverage the powerful K8s ecosystem without breaking the bank.

Speakers

Amir Jakoby

CTO & Co-Founder, Sawmills

Amir Jakoby is a seasoned technology executive with over 18 years of experience in software engineering, leadership, & product innovation. He currently serves as Co-Founder and CTO of Sawmills.ai. Previously, as VP of Engineering at New Relic, Amir led a global team of 85 engineers... Read More →

Wednesday June 25, 2025 11:00am - 11:40am MDT
Bluebird Ballroom 2G

Cloud + Containers

Audience Experience Level Intermediate

11:00am MDT

Test Harness: Continuous Testing on Hardware - Trecia Agoylo & Julia Anjanet Pineda, Analog Devices

Wednesday June 25, 2025 11:00am - 11:40am MDT

Bluebird Ballroom 2A

The test harness (aka board farm) was initially designed to enable automated testing of Linux drivers on actual hardware. This ultimately became a way to implement continuous testing on hardware, every commit or PR, a build and test is run, and results are reflected back to the commit. It is designed to cater a wide range of peripheral devices and platforms mainly for Analog Devices' Kuiper Linux distribution which is built with more than 1000 Linux device drivers compatible with Xilinx and Intel FPGAs, Raspberry Pi boards, and several other platforms.

This talk covers the design and implementation of such a fully automated test harness. The implemented architecture leverages the use of readily available components/technologies such as Jenkins, Docker, NetBox, and JFrog Artifactory and, at the same time, includes custom-built tools that can be tailored and extended to support existing or new devices and platform types.

This talk will also cover how the team handled the challenges encountered while implementing and addressing features such as resource queueing to minimize waiting time of running builds and also how we make use of sdcardmux to handle recovery.

Speakers

Trecia Agoylo

Senior Software QA Engineer, Analog Devices Inc.

I have seven years of software quality assurance testing experience which also enabled me to learn DevOps practices. I value continuous learning, and I am eager in learning new automation tools. I enjoy finding bugs as much I enjoy debugging them.

Julia Anjanet Pineda

Software QA Engineer, Analog Devices

I like to run while waiting for build jobs to finish. I would work for hours to automate a task that should only take seconds to do manually. I develop and maintain a fully automated hardware test harness for system-level testing.

Wednesday June 25, 2025 11:00am - 11:40am MDT
Bluebird Ballroom 2A

Embedded Linux Conference

Audience Experience Level Any

11:00am MDT

Panel Discussion: From First PR To Lifelong Impact: Helping People Thrive in Open Source - Dawn Foster & Ruth Ikegah, CHAOSS; Sandeep Kanabar, Gen; Shuah Khan, The Linux Foundation

Wednesday June 25, 2025 11:00am - 11:40am MDT

Bluebird Ballroom 3H

Open source is the foundation of modern software, yet many projects struggle with sustainability—not just in attracting contributors, but in ensuring they stay, grow, and thrive. The landscape of open source contribution has evolved dramatically, demanding a fresh approach to community building and contributor engagement.

Traditional pathways into open source don’t work for everyone. This panel brings together experts who have successfully expanded contributor pipelines beyond the usual audience—through initiatives like the CNCF Deaf and Hard-of-Hearing WG, CHAOSS Africa, and mentorship programs. We’ll explore best practices for guiding contributors from their first PR (or non-code contribution) to meaningful, long-term engagement.

Beyond code, open source thrives on diverse contributions: marketing, content creation, event planning, automation, governance, and more. By broadening the definition of “contributor,” we lower barriers to entry, strengthen projects, and build a more inclusive, resilient ecosystem.

Join us for a discussion on how we can transform contributor journeys to be more inclusive, fulfilling, and impactful for individuals and the broader open source ecosystem.

Speakers

Dawn Foster

Director of Data Science, CHAOSS

Sandeep Kanabar

Lead Software Engineer | CHAOSS Asia WG, Gen (formerly NortonLifeLock)

Hailing from India, Sandeep is a passionate software engineer working at Gen (formerly NortonLifeLock), a global leader in CyberSecurity. A frequent meetup speaker, Sandeep enjoys sharing his lessons with the community. He's a staunch advocate for open-source, diversity and inclusion... Read More →

Shuah Khan

Kernel Maintainer & Linux Fellow, The Linux Foundation

Ruth Ikegah

Community Lead, CHAOSS Project

Ruth Ikegah is an Open Source Program Manager, Technical Writer, GitHub Star, and Public Speaker. She serves as the Community Lead at CHAOSS Africa, working to improve the health of Open Source communities on the continent. She also doubles as a maintainer in the Diversity, Equity... Read More →

Wednesday June 25, 2025 11:00am - 11:40am MDT
Bluebird Ballroom 3H

Equity + Inclusion + Accessibility

Audience Experience Level Beginner

11:00am MDT

A Technical Primer To Spectre V2 Mitigations in the Linux Kernel - Karissa Sanchez, Angelina Vu & Thara Gopinath, Microsoft

Wednesday June 25, 2025 11:00am - 11:40am MDT

Bluebird Ballroom 2C

Since the discovery of the Spectre vulnerability in 2017, many technologies have been developed to mitigate the risks of its variants. Full mitigation could require changes from CPU vendors, but there are various branch target injection (Spectre v2) mitigations for Linux users that are implemented from within the kernel. What are these kernel mitigation options and how are they enabled? What is the kernel actually doing when these features are enabled and how does that prevent a Spectre v2 attack? In this talk we will discuss the approach of a Spectre v2 attack, provide an in-depth explanation of mitigations for such an attack implemented in the kernel, and cover differences between them. For example, what are processor requirements and performance tradeoffs for the different mitigation options? We will compare the two main mitigation options, return trampolines (retpolines) and Enhanced Indirect Branch Restricted Speculation (Enhanced IBRS), as well as touch on other related Spectre v2 mitigation features, such as return stack buffer protection, branch history injection protection, and indirect branch prediction barriers.

Speakers

Thara Gopinath

Microsoft

Angelina Vu

Software engineer, Microsoft

Karissa Sanchez

Software Engineer, Microsoft

Wednesday June 25, 2025 11:00am - 11:40am MDT
Bluebird Ballroom 2C

Linux

Audience Experience Level Intermediate

11:00am MDT

Self-Driving DAMON/S: Controlled and Automated Access-aware Efficient Systems - SeongJae Park, Meta

Wednesday June 25, 2025 11:00am - 11:40am MDT

Bluebird Ballroom 2B

Data access monitoring and access-aware system operations based on it can be very useful and efficient when it is used wisely. Otherwise, it can be useless or even harmful. Hence, users are often required to do time-consuming and repetitive testing and tuning. It is not only data access monitoring's problem but a common issue at system-level operations.

DAMON is a Linux kernel subsystem for efficient data access monitoring and access-aware system operations. It mitigates the tuning problem by embedding a few automation mechanisms that allows users to run it in an automated for best outputs, but still safely controlled way.

This talk introduces the tuning problem and DAMON's automation mechanisms in detail, with usage guidelines and evaluation results. Audiences will be able to understand how they can use DAMON for more efficient system, and get some ideas about how to solve the tuning problems in general.

Speakers

SeongJae Park

Software Engineer, Meta

SeongJae Park is a Linux kernel programmer who maintains the data access monitoring framework of the Linux kernel called DAMON (https://damonitor.github.io/). His interests include operating system kernels, parallel computing, and memory management.

Wednesday June 25, 2025 11:00am - 11:40am MDT
Bluebird Ballroom 2B

Linux

Audience Experience Level Intermediate

11:00am MDT

Guarding the LLM Galaxy: Security, Privacy, and Guardrails in the AI Era - Jigyasa Grover, BORDO AI & Rishabh Misra, Attentive Mobile Inc

Wednesday June 25, 2025 11:00am - 11:40am MDT

Bluebird Ballroom 3E

The widespread adoption of Large Language Models (LLMs) like GPT-4, Claude, and Gemini has introduced unprecedented capabilities and equally unprecedented risks. Organizations are increasingly deploying LLMs to handle sensitive tasks, from processing medical records to analyzing financial documents. This talk examines the evolving landscape of LLM security and privacy, combining theoretical foundations with a walkthrough of example implementations.

Through real-world case studies of both attacks and defenses and practical implementation guidance using popular security tools, we'll explore critical vulnerabilities and proven defensive techniques. Special attention will be given to securing fine-tuned and domain-specific LLMs, with live examples using NVIDIA’s NeMo Guardrails, LangChain's security tools, and Microsoft's guidance library.

Speakers

Jigyasa Grover

Lead, AI & Research, BORDO AI

10-time award winner in Artificial Intelligence and Open Source and the co-author of the book 'Sculpting Data For ML', Jigyasa Grover is a powerhouse brimming with passion to make a dent in this world of technology and bridge the gaps. AI & Research Lead, she has years of ML engineering... Read More →

Rishabh Misra

Lead Machine Learning Engineer, Attentive Mobile Inc

Author of the book "Sculpting Data for ML", I am a Lead ML Engineer & Researcher recognized by the US Government for outstanding contribution to ML research. I have extensively published and reviewed research at top AI conferences in NLP (LLMs / GenAI), Deep Learning, and Applied... Read More →

Wednesday June 25, 2025 11:00am - 11:40am MDT
Bluebird Ballroom 3E

Open AI + Data

Audience Experience Level Intermediate

11:00am MDT

Triton Inference Server: Supporting Next-Generation AI Workloads - Olga Andreeva & Ryan McCormick, NVIDIA

Wednesday June 25, 2025 11:00am - 11:40am MDT

Bluebird Ballroom 3F

Triton Inference Server has long been a reliable tool for AI model deployment. As Generative AI unfolds its transformative potential, Triton continues to evolve, offering both time-tested features and new capabilities tailored for large language models and more complex agentic workflows.

This session explores how Triton’s core strengths continue to play a crucial role in optimizing generative AI deployments. These include its robust multi-framework support, dynamic batching, concurrent model execution, and the capability to deploy complex inference pipelines through model ensembling and business logic scripting.

We’ll also cover recent enhancements such as OpenAI compatible frontend, allowing easy integration with existing OpenAI-based applications; Python-based backends to standardize the deployment of Python models without writing a custom C++ backend; Triton CLI to simplify model deployment and management; distributed inference enhancements for Data Center scale.

Throughout the presentation, we’ll share practical examples and best practices, equipping our listeners with the knowledge to effectively use Triton Inference Server to optimize AI workloads’ performance and efficiency.

Speakers

Olga Andreeva

Senior Software Engineer, NVIDIA

Olga Andreeva is a senior software engineer, specializing in machine learning inferencing. With a PhD in Computer Science from the University of Massachusetts Boston and experience in both academia and industry, Olga specializes in translating cutting-edge ML research into robust... Read More →

Ryan McCormick

Senior Software Engineer, NVIDIA

Ryan McCormick is a senior software engineer working at the intersection of machine learning, systems software and distributed systems at NVIDIA. He is responsible for developing scalable and performant inference solutions, with a current focus on the Triton Inference Server and Triton... Read More →

Wednesday June 25, 2025 11:00am - 11:40am MDT
Bluebird Ballroom 3F

Open AI + Data

Audience Experience Level Any

11:00am MDT

The Accidental Maintainer: Sideways Stories Into Open Source Leadership - Divya Mohan, SUSE & Natali Vlatko, Cisco

Wednesday June 25, 2025 11:00am - 11:40am MDT

Bluebird Ballroom 3C

Maintainers are responsible for technical oversight and key decisions in open source projects. Contributor ladders, found in projects like OpenTelemetry and Apache, define the journey from contributorship to maintainership. Divya Mohan and Natali Vlatko exemplify this path, having "accidentally" risen to leadership as co-chairs of the Kubernetes Documentation Special Interest Group (SIG).
But how does one stumble into leadership, and how can we make this process intentional? In their talk, Divya and Natali will share their experiences alongside insights from other leaders in the CNCF ecosystem. They will discuss how contributions—like decision-making, completing essential tasks, and sharing knowledge—cultivate a community that fosters leadership. Discover how elevated permissions can be perceived as leadership roles, how contributors who answer questions become mentors, and recognize if you’re already demonstrating these leadership qualities.
Join along to learn about the leadership tasks Divya and Natali perform as SIG co-chairs and how you can leverage your skills to lead in your project.

Speakers

Divya Mohan

Principal Technology Advocate, SUSE

Divya is a Principal Technology Advocate at SUSE, where she contributes to and advocates for its open source projects. She co-chairs the documentation for the Kubernetes & has previously worked extensively in the systems engineering space during her tenure with HSBC & IGate Global... Read More →

Natali Vlatko

Open Source Lead Architect, Cisco

Wednesday June 25, 2025 11:00am - 11:40am MDT
Bluebird Ballroom 3C

Open Source Leadership

Audience Experience Level Any

11:00am MDT

Implementing Zero Trust in Government Settings: Strategies, Challenges, and Best Practices - Steve Taylor, DeployHub, Inc

Wednesday June 25, 2025 11:00am - 11:40am MDT

Bluebird Ballroom 3G

With escalating cyber threats and increasing regulatory pressure, government agencies face a critical need to modernize their security strategies. The Zero Trust model—"never trust, always verify"—has emerged as a cornerstone for safeguarding sensitive data and infrastructure. However, implementing Zero Trust in government settings presents unique challenges, including legacy systems, complex compliance requirements, and the need to balance security with operational efficiency. This talk will provide a roadmap for adopting Zero Trust principles in government environments, offering actionable insights to overcome obstacles and ensure mission readiness.

Speakers

Steve Taylor

CTO, DeployHub

Wednesday June 25, 2025 11:00am - 11:40am MDT
Bluebird Ballroom 3G

OpenGovCon

Audience Experience Level Beginner

11:00am MDT

Finally! A New Trademark Policy - Rebecca Rumbul & Gracie Gregory, The Rust Foundation

Wednesday June 25, 2025 11:00am - 11:40am MDT

Bluebird Ballroom 3D

Refreshing long-standing policies in OSS communities can be a long and difficult process. Last year at OSS Summit NA, we discussed getting to the mid-point in our journey in developing a new trademark policy for the Rust community. Following a lot of further work, consultation, and iteration, and final board approval, we are now able to reflect on the whole process of redeveloping a legal policy with an OSS community, the pitfalls, challenges, and paths to success.

Speakers

Rebecca Rumbul

CEO & Executive Director, Rust Foundation

Rebecca is the Executive Director and CEO of the Rust Foundation. She holds a PhD in Politics and Governance, and has worked as a consultant and researcher with governments, parliaments and development agencies all over the world, advocating for openness and transparency, and developing... Read More →

Gracie Gregory

Director of Communications & Marketing, The Rust Foundation

Wednesday June 25, 2025 11:00am - 11:40am MDT
Bluebird Ballroom 3D

Operations Management

Audience Experience Level Any

11:00am MDT

The Xen Safety Concept, a Major Milestone Toward Certification - Stefano Stabellini, AMD

Wednesday June 25, 2025 11:00am - 11:40am MDT

Bluebird Ballroom 2D

Over the past decade, the Xen community has worked tirelessly to develop key features that now form a top-tier automotive solution. Xen's most important role remains that of an enforcer, ensuring strict isolation between domains so that the execution of one domain remains unaffected by others. As one of the system's most critical components, Xen is well suited for the highest levels of safety certification.

Since 2023, AMD, in collaboration with the Xen community, has been working to make Xen safety-certifiable according to the ISO 26262 and IEC 61508 safety standards. A major milestone was achieved in Q4 2024 when we obtained Safety Concept Approval from the safety assessors. They reviewed Xen and our safety plans and confirmed compliance with the relevant standards. This is a critical milestone on the road to Xen safety, demonstrating that Xen can be safety-certified.

This presentation will provide detailed insights into the Safety Concept, the activities involved in its development, and the review process. Additionally, it will offer an in-depth update on our journey toward achieving Xen safety certification.

Speakers

Stefano Stabellini

Fellow, AMD

Stefano Stabellini is a Fellow at AMD, where he leads system software architecture and the virtualization team. Stefano has been involved in Xen development since 2007. He created libxenlight in November 2009 and started the Xen port to ARM with virtualization extensions in 2011... Read More →

Wednesday June 25, 2025 11:00am - 11:40am MDT
Bluebird Ballroom 2D

Safety-Critical Software

Audience Experience Level Intermediate

11:00am MDT

Building an Open Source System Design Interview Coach With Interactive Simulations - Sriram Panyam, Omlet Inc

Wednesday June 25, 2025 11:00am - 11:40am MDT

Bluebird Ballroom 2E

As a former FAANG engineering leader who's interviewed 100s of candidates, I've seen brilliant engineers crumble under the pressure of system design interviews. In this hands-on workshop, we'll build tools I wish every candidate (including myself) had before walking into interview rooms.

Together, we'll create:

* A system design scenario generator based on real FAANG questions
* Interactive simulators showing how architectures perform under load
* Visual tools demonstrating distributed systems concepts (CAP theorem, consistency models)
* Performance comparison tools for evaluating architectural trade-offs
* Failure scenario simulators revealing resilience thinking

Candidates often fail not from lack of knowledge, but inability to visualize and communicate complex systems under pressure. The market is competitive & rife with layoffs. These tools aren't just about getting hired - they're about ensuring talented engineers find positions where they'll thrive.

We'll use OSS (ONLY) to make abstract concepts concrete, giving you both valuable tools and insider perspective on what FAANG interviewers are really seeking when they ask you to design a system from scratch.

Speakers

Sriram Panyam

Chief Architect and Founding Engineer

As an engineering leader who's conducted 100s of technical interviews, I've seen exceptional talent fail due to the mysterious nature of system design interviews. I've built large-scale distributed systems and mentored engineers through the bewildering interview process at top tech... Read More →

Wednesday June 25, 2025 11:00am - 11:40am MDT
Bluebird Ballroom 2E

Wildcard

Audience Experience Level Any

11:00am MDT

Tutorial: Take Control of Git: Beyond the Basics - Kim Schlesinger, Contentful & Kyle Coberly, Urban Sky

Wednesday June 25, 2025 11:00am - 12:35pm MDT

Bluebird Ballroom 3A

You can commit, pull, and push—but do you truly understand Git? Does it feel more like a fragile system you tiptoe around than a tool that empowers your workflow? If navigating your repository makes you hesitant, it's time to go beyond the basics and build real confidence.

In this hands-on workshop, you’ll learn to:

1. Navigate with confidence: Jump between commits without fear using Reflog, ensuring you never lose your place
2. Refine your workflow: Embrace the safety of version control with patches, diffs, and resets to commit first and edit later
3. Keep your best work: Shape your commit history with checkout file, cherry-pick, and interactive rebase to express your intent clearly

Version control isn’t just a safety net—it’s a tool that amplifies your impact as an engineer. Equip yourself with the professional’s toolkit and make Git work for you!

Speakers

Kim Schlesinger

Technical Learning Experience Designer, Contentful

Kyle Coberly

Staff Software Engineer, Urban Sky

Kyle Coberly is a software engineer and coach specializing in web product development, quality, and agility. He’s currently a Staff Software Engineer at Urban Sky and an adjunct professor of Information Technology at the University of Denver. He was formerly the Director of Education... Read More →

Wednesday June 25, 2025 11:00am - 12:35pm MDT
Bluebird Ballroom 3A

Open Source 101

Audience Experience Level Intermediate

11:20am MDT

Event Provenance Registry: Continuous Delivery Events for the Electric Sheep - Brett Smith, SAS Institute, Inc.

Wednesday June 25, 2025 11:20am - 11:40am MDT

Bluebird Ballroom 3B

What if you got a second chance to build an Event Driven Provenance service? In this talk I will cover the decision to start over, rewrite, and Open Source the Event Driven system we built in house. In the process of covering the things we changed and the things we kept I tell a few war stories. Add in what needed to be improved and what we left behind. I will talk about our involvement in the CD Foundation and how the new system can leverage CDEvents and help with SBOM storage and retrieval. Demo and Discussion included dependent on time allotment.

Speakers

Brett Smith

Distinguished Software Developer, SAS Institute, Inc.

Software Architect/Engineer/Developer with 25+ years of experience. Specialties: Event Driven Automation, Continuous Integration/Delivery/Testing/Deployment, Supply Chain Security Expertise: Linux, packaging, and tool design. Currently Engineering and Securing the Supply Chain... Read More →

Wednesday June 25, 2025 11:20am - 11:40am MDT
Bluebird Ballroom 3B

cdCon

Audience Experience Level Any

11:20am MDT

Unlocking Telco APIs: How Open Source Is Driving Standardization & Interoperability - Markus Kummerle, Deutsche Telekom

Wednesday June 25, 2025 11:20am - 11:40am MDT

Bluebird Ballroom 2F

In the world of API development, standardization & interoperability are essential for seamless integration across industries. CAMARA Project, in collaboration with GSMA, TM Forum, and the LF, leads the charge in harmonizing telco API standards. Through open collaboration, the project has established a unified, industry-wide framework that simplifies API adoption for telco operators, enabling them to integrate with marketplaces, aggregators, & hyperscalers more efficiently.
This session summarizes the telco API ecosystem, the key organizations shaping it, and how developers can get involved:

How CAMARA defines telco end-user-facing APIs and streamlines adoption for operators; The GSMA Open Gateway Initiative’s role in standardizing API distribution across different channels;
TM Forum’s work in enabling communication between operators, marketplaces, and hyperscalers; and Practical ways developers can contribute—whether by implementing APIs within operators, connecting exposure platforms, integrating their own portals, or adapting products to fit into this growing ecosystem.

Explore how OSS transforms the telco industry and how to be part of this collaborative movement!

Speakers

Markus Kummerle

Program Manager Deutsche Telekom API Exposure, Deutsche Telekom

Markus Kümmerle is responsible for the 5G Network Exposure Program at Deutsche Telekom. Since 2014 Markus has been responsible for Quality for the System Integration / Digital Solutions unit of T-Systems. In parallel, he continues driving large projects and programs. In 2020 he took... Read More →

Wednesday June 25, 2025 11:20am - 11:40am MDT
Bluebird Ballroom 2F

Standards + Specifications

Audience Experience Level Beginner

11:55am MDT

Navigating Compliance: What Developers Can Learn From Driving - Kadi McKean & Charlie Jones, ReversingLabs

Wednesday June 25, 2025 11:55am - 12:15pm MDT

Bluebird Ballroom 3B

When driving on a highway, you have to follow the rules of the road—some apply to everyone, while others only apply to commercial drivers. Open source maintainers and software publishers face a similar divide regarding regulatory compliance.

While software manufacturers must meet extensive legal and security obligations, open source maintainers often assume these regulations do not apply directly to them—but do they? In this talk, we’ll separate fact from fiction by breaking down what rules like the EU Cyber Resilience Act require from maintainers versus software vendors.

We’ll explore the limited enforceable obligations for open source projects, including secure development policies and vulnerability reporting, and discuss when (if ever) these rules impact maintainers. By understanding these distinctions, open source contributors can make informed decisions about risk, responsibility, and collaboration with commercial software teams—without unnecessary compliance burdens.

Speakers

Kadi McKean

Community Manager, ReversingLabs

Charlie Jones

Director of Product Management, ReversingLabs

Charlie is currently a Director of Product Management and subject matter expert in cybersecurity and digital trust. Charlie has 10 years experience delivering strategic transformation initiatives, specializing in cybersecurity, TPRM, and regulatory compliance for Fortune 100 financial... Read More →

Wednesday June 25, 2025 11:55am - 12:15pm MDT
Bluebird Ballroom 3B

cdCon

Audience Experience Level Any

11:55am MDT

FoundationDB, the Black Knight - Peter Boros, Tigris Data

Wednesday June 25, 2025 11:55am - 12:35pm MDT

Bluebird Ballroom 2G

Monty Python’s Black Knight is the opponent that couldn’t lose. Even after all of his limbs were cut off, he offered a draw: “it’s just a scratch.”

FoundationDB (FDB) is a distributed transactional key-value store that is very difficult to defeat just like the Black Knight. Open-sourced in 2018 after an acquisition by Apple, FDB was designed to be a common layer: almost all databases have a backing key-value store. Many have built on top of it including Snowflake, Adobe, & Datadog.

FDB got it right: transactions, distributed by default, and extreme reliability. Kyle Kingsbury (aphyr) the author of Jepsen series on distributed systems correctness, said: "haven't tested foundation in part because their testing appears to be waaaay more rigorous than mine."

We demo a live FDB cluster and try to disrupt its operations. Our attempts are informed by real world experience supporting a metadata service for billions of objects globally.

When we finally succeed, we show how backups and disaster recovery resurrect FDB. We’ll learn about highly resilient design patterns and operations. We have battle scars, and want to help others!

Speakers

Peter Boros

Founding Engineer, Tigris Data

Peter is a founding engineer at Tigris Data. He has been using and working with open source software from early 2000s. Peter's first and foremost professional interest is performance tuning and large scale automation. Before rejoining Tigris Data, Peter worked on large scale MySQL... Read More →

Wednesday June 25, 2025 11:55am - 12:35pm MDT
Bluebird Ballroom 2G

Cloud + Containers

Audience Experience Level Intermediate

11:55am MDT

Virtio-msg: Making Virtio Work Where It Does Not Today - Bill Mills, Linaro

Wednesday June 25, 2025 11:55am - 12:35pm MDT

Bluebird Ballroom 2A

Virtio-msg is a new virtio transport that allows Virtio to be used on AMP systems between Linux and Zephyr on a co-processor, between the Linux Kernel and Secure World TEEs like Trusty and OP-TESS, and other places where Virtio-mmio and Virtio-pci do not work.

Speakers

Bill Mills

Principal Technical Consultant, Linaro

Bill Mills has been professionally active in embedded systems for over 37 years. He has been the lead developer on debugger/emulator, RTOS kernel, VoIP, and many other projects. He has been focused on Embedded Linux strategy for over 15 years. He is a founding member of the Yocto... Read More →

Wednesday June 25, 2025 11:55am - 12:35pm MDT
Bluebird Ballroom 2A

Embedded Linux Conference

Audience Experience Level Intermediate

11:55am MDT

From Classroom To Cloud: Bridging Academia and the Open Source Ecosystem - Andy Anderson, IBM Research & Professor Corey Leong, Valencia College

Wednesday June 25, 2025 11:55am - 12:35pm MDT

Bluebird Ballroom 3H

This session introduces **Interns for Open Source (IFOS)**, a program that offers undergraduate and graduate Computer and Information Sciences students hands-on experience with open source projects for academic credit. Over 10 weeks, students bridge classroom learning and real-world application by contributing through issue tracking and pull requests. Their fresh perspectives provide open source communities with valuable feedback, usability insights, and rigorous testing. Students sharpen technical skills, learn professional workflows, and build portfolios. Open source projects benefit from innovative ideas and unbiased input. Attendees will learn about the program structure, its benefits for students and open source communities, and how to get involved.

Speakers

Corey Leong

Professor Cloud Computing, Valencia College

Prior to teaching, I worked in the IT industry for 25 years. I currently teach cloud computing courses, oversee open source mentorships and cloud internships.

Andy Anderson

Software Architect, IBM Research

Andy is an experienced software architect with a strong track record of leading research and engineering teams on hybrid cloud and Kubernetes-based platform development. He has a wealth of experience in software development, cloud computing, and data analysis. Andy is particularly... Read More →

Wednesday June 25, 2025 11:55am - 12:35pm MDT
Bluebird Ballroom 3H

Equity + Inclusion + Accessibility

Audience Experience Level Beginner

11:55am MDT

The Big-endian RISC-V Linux Adventure - Ben Dooks, Codethink

Wednesday June 25, 2025 11:55am - 12:35pm MDT

Bluebird Ballroom 2C

The latest RISC-V ISA specification allows for runtime configuration of the data endian between little and big. Since no one had done this before, we decided to investigate how difficult it would be to get a prototype Linux implementation running in big endian on an emulated RISC-V system such as under QEMU.

The talk goes from the description of the new ISA feature, our initial analysis and the modifications to software such as the Linux kernel, QEMU and OpenSBI and an overview of the issues that we found and how to fix them. This includes kvm and how that works with mixed endian kvm instances, and the modifications to kvmtool to make this work.

We conclude with how the project went, what we published and a call to arms to continue testing and fixing outstanding issues.

Speakers

Ben Dooks

Senior Engineer, Fellow, Codethink

Senior open source consultant at Codethink and long-time contributor to various projects such as the Linux Kernel.

Wednesday June 25, 2025 11:55am - 12:35pm MDT
Bluebird Ballroom 2C

Linux

Audience Experience Level Intermediate

11:55am MDT

Fast Inference, Furious Scaling: Leveraging VLLM With KServe - Rafael Vasquez, IBM

Wednesday June 25, 2025 11:55am - 12:35pm MDT

Bluebird Ballroom 3E

In this talk, we will introduce two open-source projects vLLM and KServe and explain how they can be integrated to leverage better performance and scalability for LLMs in production. The session will include a demo showcasing their integration.

vLLM is a high-performance library specifically designed for LLM inference and serving, offering cutting-edge throughput and efficiency through techniques such as PagedAttention, continuous batching, and optimized CUDA kernels, making it ideal for production environments that demand fast, large-scale LLM serving.

KServe is a Kubernetes-based platform designed for scalable model deployment. It provides robust features for managing AI models in production, including autoscaling, monitoring, and model versioning.

By combining vLLM's inference optimizations with KServe's scalability, organizations can deploy LLMs effectively in production environments, ensuring fast, low-latency inference and seamless scaling across cloud platforms.

Speakers

Rafael Vasquez

Open Source Software Developer, IBM

Rafael Vasquez is a software developer on the Open Technology team at IBM. He previously completed an MASc. working on self-driving car research and transitioned from a data scientist role in the retail field to his current role where he continues to grow his passion for MLOps and... Read More →

Wednesday June 25, 2025 11:55am - 12:35pm MDT
Bluebird Ballroom 3E

Open AI + Data

Audience Experience Level Beginner

11:55am MDT

Harnessing Event-Driven and Multi-Agent Architectures for Complex Workflows in Generative AI System - Mary Grygleski, Callibrity

Wednesday June 25, 2025 11:55am - 12:35pm MDT

Bluebird Ballroom 3F

Generative AI applications, in general, excel in zero-shot and one-shot types of specific tasks. However, we live in a complicated world and we are beginning to see that today’s generative AI systems are simply not well equipped to handle the increased complexity that is found especially in business workflows and transactions. Traditional architectures often fall short in handling the dynamic nature and real-time requirements of these systems. We will also need a way to coordinate multiple components to generate coherent and contextually relevant outputs. Event-driven architectures and multi-agent systems offer a promising solution by enabling real-time processing, decentralized decision-making, and enhanced adaptability.

This presentation proposes an in-depth exploration of how event-driven architectures and multi-agent systems can be leveraged to design and implement complex workflows in generative AI. By combining the real-time responsiveness of event-driven systems with the collaborative intelligence of multi-agent architectures, we can create highly adaptive, efficient, and scalable AI systems. This presentation will delve into the theoretical and practical sides.

Speakers

Mary Grygleski

Director, Emerging Technologies, Callibrity

Mary is a Technical Advocate, Java Champion, and the Director of Emerging Technologies at Callibrity. She started as an engineer in Unix/C, then transitioned to Java around 2000 and has never looked back since then. After 20+ years of being a software engineer and technical architect... Read More →

Wednesday June 25, 2025 11:55am - 12:35pm MDT
Bluebird Ballroom 3F

Open AI + Data

Audience Experience Level Intermediate

11:55am MDT

Building InnerSource Community: What Goes Behind the Scenes? - Shanmugapriya Manoharan, IKEA (Ingka Group)

Wednesday June 25, 2025 11:55am - 12:35pm MDT

Bluebird Ballroom 3C

InnerSource involves much more than just opening up the codebase for reuse & contribution. So much nuanced, time sensitive work is done by maintainers behind the scenes to nurture a community around an InnerSource project - answering queries from the community in a timely manner, finding & promoting project to right customers (potential contributors), maintaining regular communication & creating a safe space for community to provide feedback, to name a few. These activities require commitment by the maintainers. It may come naturally for those who are familiar with inclusive, open source ways of working. For teams new to InnerSource and/or not familiar with open source development models, there is a need for a mindset shift to open development models. What can prevent teams within the company from reusing and contributing to an InnerSource project? Will inclusivity matter while building an internal community? What factors in an InnerSource project affect this inclusiveness? Is there a difference in community building strategy between InnerSource and open source projects? In this talk, I will share my learnings on what works and what does not, while building internal communities.

Speakers

Shanmugapriya Manoharan

OSS Engineering Advisor, OSPO, IKEA (Ingka Group)

Shanmugapriya is an Open Source & InnerSource SME, working as Engineering Advisor at OSPO, IKEA IT AB. She has 15+ years of experience in driving initiatives and projects including Open Source and InnerSource projects, while working in organizations like HPE and Dell Technologies... Read More →

Wednesday June 25, 2025 11:55am - 12:35pm MDT
Bluebird Ballroom 3C

Open Source Leadership

Audience Experience Level Intermediate

11:55am MDT

Securing Software Supply Chains for the Public Good - Daniel Moch, Lockheed Martin & William Crum, SpectroCloud

Wednesday June 25, 2025 11:55am - 12:35pm MDT

Bluebird Ballroom 3G

Drawing from our experiences within the public sector, we discuss software supply chain security as it pertains to public sector organizations, including the unique risks and challenges they face and how we can all work together to improve the security of the open source ecosystem.

Speakers

Daniel Moch

Staff Software Engineer, Lockheed Martin

William Crum

Defense Success Engineer, SpectroCloud

Sergeant William Crum is a U.S. Marine Corps Reservist and software engineer at Spectro Cloud. He serves with the Marine Innovation Unit, driving software modernization within the Marine Corps. In his civilian role, he is a Docker Captain and Senior Defense Engineer at Spectro Cloud... Read More →

Wednesday June 25, 2025 11:55am - 12:35pm MDT
Bluebird Ballroom 3G

OpenGovCon

Audience Experience Level Intermediate

11:55am MDT

In From the Cold - Open Source as Part of Mainstream Software Asset Management - Shane Coughlan, The Linux Foundation

Wednesday June 25, 2025 11:55am - 12:35pm MDT

Bluebird Ballroom 3D

Software Asset Management (SAM) provides a way to manage software across small, medium and large entities. It is often seen as a way of addressing licensing or for making sure company staff are using permitted software applications and versions.

Open source has traditionally been divorced from SAM, which was focused on proprietary software solutions. Partly this was due to practical matters like different licensing schemes, and partly it was an artifact of separate paths of evolution.

However, in recent years open source has increasingly adopted approaches to licensing, security and other challenges that mirror SAM. Examples include the use of standards like ISO/IEC 5230 for licensing and ISO/IEC 18974 for security, of implementation standards like ISO/IEC 5962 for Software Bill of Materials.

As a consequence, open source is now more closely aligned with SAM. This talk will examine what that means for open source management overhead today, and where it will take us in the future. This talk is intended to equip people in open source strategy, legal and team leadership to navigate changes as smoothly as possible.

Speakers

Shane Coughlan

OpenChain General Manager, The Linux Foundation

Shane Coughlan is an expert in communication, security and business development. His professional accomplishments include spearheading the licensing team that elevated OIN into the largest patent non-aggression community in history and establishing the first global network for open... Read More →

Wednesday June 25, 2025 11:55am - 12:35pm MDT
Bluebird Ballroom 3D

Operations Management

Audience Experience Level Intermediate

11:55am MDT

Verifying the Rust Standard Library - Rahul Kumar, Amazon Web Services

Wednesday June 25, 2025 11:55am - 12:35pm MDT

Bluebird Ballroom 2D

The Rust programming language is experiencing rapid adoption in critical infrastructure and systems programming, propelled by its memory safety guarantees and developer productivity advantages. Significant technology policies, such as the US National Cyber Strategy, explicitly endorse Rust as a pathway to memory-safe software. Unsafe code blocks, however, can circumvent Rust’s compile-time guarantees. To address this disparity, AWS has collaborated with the Rust Foundation on the Rust Standard Library Verification project, whose objective is to formally verify the safety of the Rust standard library. We are actively integrating automated verification into the Rust Library release process, thereby ensuring continuous safety validation across releases.

Our presentation will elucidate the structural framework and rationale underpinning our verification contest. We will demonstrate our current progress, showcasing successful verification examples and discussing the diverse open-source tools employed in the verification process. We will conclude with our prioritized areas for 2025 and practical ways for the Rust community to actively participate in this pivotal security initiative.

Speakers

Rahul Kumar

Senior Manager Applied Science, Amazon Web Services

Rahul Kumar completed his PhD from Brigham Young University. He has worked on formal verification and static analysis at Microsoft, Microsoft research, NSA JPL. He also worked on combining empirical software engineering and static analysis techniques for creating machine learning... Read More →

Wednesday June 25, 2025 11:55am - 12:35pm MDT
Bluebird Ballroom 2D

Safety-Critical Software

Audience Experience Level Intermediate

11:55am MDT

Developing a Community-Driven Standard for Open Source Software Quality - Philipp Ahmann, Etas GmbH (BOSCH) & Gabriele Paoloni, Red Hat

Wednesday June 25, 2025 11:55am - 12:35pm MDT

Bluebird Ballroom 2F

Established quality standards, designed for traditional V-Model ( requirements driven) development, are inadequate for evaluating and supporting code-driven, CI/CD-based nature of modern (open source) software. This hinders OSS adoption in regulated industries, particularly for safety-critical systems. This session introduces a novel standard proposal specifically designed to assess OSS process capabilities by documenting open source best practices and providing a practical assessment guide. It aims to bridge the gap between OSS development practices and the needs of regulated industries, fostering greater trust and enabling wider adoption.

This session outlines the three phases from research to execution for establishing the standard, drawing on relevant academic research and showcasing exemplary open source projects with established best practices. The authors will also explore existing scoring initiatives and some quality metrics. The session concludes with a roadmap for collaborative development of the standard and a call to action for community participation.

Speakers

Philipp Ahmann

Sr. OSS Commumity Manager, Etas GmbH (BOSCH)

Gabriele Paoloni

Sr SW Principal Engineer, Red Hat

Wednesday June 25, 2025 11:55am - 12:35pm MDT
Bluebird Ballroom 2F

Standards + Specifications

Audience Experience Level Intermediate

11:55am MDT

Open Source Software: Hollywood’s Secret Sauce for Visual Effects and Animation - David Morin, Academy Software Foundation

Wednesday June 25, 2025 11:55am - 12:35pm MDT

Bluebird Ballroom 2E

Open source software is the basis for the tools used to create almost all visual effects and animation used in the motion picture industry today, providing the backbone for creating blockbuster films like The Wild Robot, Moana 2, Dune, Oppenheimer, the Star Wars movies and all of the Marvel Cinematic Universe films.

The most important open source projects that are used on almost every film production today are housed at the Academy Software Foundation (ASWF), which provides a neutral forum for open source software developers in the motion picture and broader media industries to share resources and collaborate on technologies for image creation, visual effects, animation and sound.

The Foundation has flourished since its launch in 2018, hosting 14 projects and supporting a growing ecosystem of open source engineers. During this session, David Morin, Executive Director of the Academy Software Foundation, will share more about the Foundation’s growth over the last six years, including new open source projects, engineering events such as Dev Days, and D&I initiatives including the Summer Learning Program.

Speakers

David Morin

Executive Director, Academy Software Foundation, Academy Software Foundation

David Morin is Executive Director of the Academy Software Foundation. He has participated in the development of motion capture and 3D software since “Jurassic Park” at companies such as Softimage, Microsoft, Avid Technology, Autodesk and Epic Games. David is also chair of the... Read More →

Wednesday June 25, 2025 11:55am - 12:35pm MDT
Bluebird Ballroom 2E

Wildcard

Audience Experience Level Beginner

12:15pm MDT

Lightning Talk: Release Engineering Is Dead - Carlos Sanchez, Adobe

Wednesday June 25, 2025 12:15pm - 12:25pm MDT

Bluebird Ballroom 3B

You may be too young to remember the days when we used to release software manually. We used to have to wait for the release engineer or team or somebody wearing that hat to get the release ready, lock dependencies (if you were lucky), create a tag, deploy it,... Now we can release software multiple times per day, and we do not need to wait for any release engineer to do it.

But how to you do this? how do you manage multiple dependencies, their versions, and the impact of each change?

In this talk we will see how to use some tools and best practices to automatically cut new versions and update dependencies with no humans involved. We will cover concepts like conventional commits and tools such as commitizen and renovate to help us get rid of the tedious tasks of releasing software and updating dependencies.

Speakers

Carlos Sanchez

Principal Scientist, Adobe

Carlos Sanchez is a Principal Scientist at Adobe Experience Manager, specializing in software automation, from build tools to Continuous Delivery and Progressive Delivery. Involved in Open Source for over 20 years, he is the author of the Jenkins Kubernetes plugin and a member of... Read More →

Wednesday June 25, 2025 12:15pm - 12:25pm MDT
Bluebird Ballroom 3B

cdCon

Audience Experience Level Beginner

12:25pm MDT

Lightning Talk: It's Friday! - Alon Nisser, Zencity

Wednesday June 25, 2025 12:25pm - 12:35pm MDT

Bluebird Ballroom 3B

It's Friday afternoon, and you've got plans for this evening. You've just finished the feature. you push to master, and click deploy. OR DO YOU? let's talk about Friday deployments and what they can teach us. A candid talk about CI/CD as an unfinished journey.

Speakers

Alon Nisser

Principal engineer Zencity, Zencity

Software developer. currently in Zencity.io. Writing software as a hobby and as a profession. Strong opinions on things. Open source aficionado. Trying to make a difference.Sometimes software makes we wonder if I'd be better off being a farmer

Wednesday June 25, 2025 12:25pm - 12:35pm MDT
Bluebird Ballroom 3B

cdCon

Audience Experience Level Intermediate

12:35pm MDT

Lunch (Provided Onsite for All Attendees)

Wednesday June 25, 2025 12:35pm - 2:10pm MDT

Solutions Showcase - Bluebird Ballroom 1AB

Wednesday June 25, 2025 12:35pm - 2:10pm MDT
Solutions Showcase - Bluebird Ballroom 1AB

Special Events / Exhibits / Breaks

2:10pm MDT

Managing Resources To Lower Costs - Mark Waite, CloudBees & Melissa McKay, JFrog

Wednesday June 25, 2025 2:10pm - 2:30pm MDT

Bluebird Ballroom 3B

Do you have a closet that’s overflowing? In order to accommodate your favorite latest wardrobe styles (and to avoid a closet clutter disaster), you might need to let go of those jeans two sizes too small or… gasp! … prune your conference t-shirt collection to a reasonable number.

In the CI/CD world, cleaning out your closet translates in part to activities like pruning artifact repos and limiting bandwidth usage appropriately. Businesses are incessantly looking for ways to trim the fat for leaner, healthier bottom lines, and DevOps operational infrastructure can be a clutter hotspot when it comes to resource expense.

Learn how the Jenkins project has reduced costs with more effective management of its operational resources. We’ll share techniques that we’ve used to identify costs, reallocate resources to reduce those costs, and adapt to changing environments. The Jenkins closet is looking better than ever!

Speakers

Mark Waite

Manager, CloudBees

Mark is a member of the Jenkins governance board, maintainer of the Jenkins git plugin, and a long-time contributor to continuous integration and continuous delivery topics.

Melissa McKay

Head of Developer Relations, JFrog

Melissa is passionate about Java, DevOps and Continuous Delivery. She is currently Head of Developer Relations for JFrog and a member of the Technical Steering Committee of the Open Platform for Enterprise AI (OPEA). Melissa has been recognized as a Java Champion and a Docker Captain... Read More →

Wednesday June 25, 2025 2:10pm - 2:30pm MDT
Bluebird Ballroom 3B

cdCon

Audience Experience Level Intermediate

2:10pm MDT

Traefik V4: What We’re Cooking for You - Nicolas Mengin & Emile Vauge, Traefik Labs

Wednesday June 25, 2025 2:10pm - 2:50pm MDT

Bluebird Ballroom 2G

Traefik is one of the most popular open-source projects in the world, with over 3 billion downloads and a top 15 spot on DockerHub. As a powerful Ingress and Gateway Controller, Traefik simplifies exposing, securing, and managing services and APIs dynamically and at scale—whether in simple setups or complex cloud-native environments.

Just one year after the release of Traefik v3, we're already taking things to the next level! In this session, Emile Vauge (Traefik Creator) and Nicolas Mengin (Traefik Maintainer) will unveil the exciting new features coming in Traefik v4, including:
- A new plugin system for even greater extensibility
- Pre-routing operations to optimize traffic handling
- Enhanced TLS certificate management for better security and automation
- Improved configuration management for a smoother experience
- … and much more!

Join us to get a sneak peek at what’s next for Traefik and see how these innovations will make your cloud-native journey even easier.

Speakers

Nicolas Mengin

Head of Development, Traefik Labs

Developer and DevOps - Maintainer of Traefik. Head of Development at Traefik Labs, the company behind Traefik, the popular cloud-native Gateway Controller, and Traefik Hub, a comprehensive API Management solution for Kubernetes. Responsible for overseeing the implementation of... Read More →

Emile Vauge

CTO, Traefik Labs

Emile is a Developer. He created Traefik in 2015 and is now the CTO of Traefik Labs, the company sponsoring the open source project.

Wednesday June 25, 2025 2:10pm - 2:50pm MDT
Bluebird Ballroom 2G

Cloud + Containers

Audience Experience Level Intermediate

2:10pm MDT

V4L2 Media Controller Request API - Karthik Poduval, Amazon Lab126

Wednesday June 25, 2025 2:10pm - 2:50pm MDT

Bluebird Ballroom 2A

Media Request API was designed to allow V4L2 devices like memory to memory video processing or codec devices and complex camera pipelines to support per frame settings and per frame metadata. In this talk we will deep dive on the details of this API with example use cases such as memory to memory video processing devices and complex ISP pipelines using this API for per frame settings and per frame metadata.

Speakers

Karthik Poduval

Principal Software Development Engineer, Amazon Lab126

Karthik Poduval is a Principal Software Development Engineer at Amazon Lab126. In this role, he develops Embedded Linux device drivers and middleware stack for camera/ISP and other imaging devices.

Wednesday June 25, 2025 2:10pm - 2:50pm MDT
Bluebird Ballroom 2A

Embedded Linux Conference

Audience Experience Level Intermediate

2:10pm MDT

Contributor Catalyst: New Contributor Perspectives From an HBCU Mentorship Program - Emily Lovell, UC Santa Cruz OSPO & Silas Morgan, Norfolk State University

Wednesday June 25, 2025 2:10pm - 2:50pm MDT

Bluebird Ballroom 3H

Open source is woven into nearly all modern technology, making it more important than ever to support new contributors – but entering the world of open source contribution can be a daunting experience. There are unspoken norms to understand, new tools and best practices to learn, and a whole lot of code to navigate.

In 2023, the UC Santa Cruz OSPO launched a summer mentorship program to support students from Historically Black Colleges and Universities (HBCUs) contributing to open source. Over the course of eight weeks, each tight-knit cohort learns how to productively contribute to a project of their choosing, while working together both in-person and remotely. Program alumni have returned as peer mentors, spoken at conferences, been interviewed for podcasts, and accepted paid work in open source.

This session will showcase the perspective of both current participants and program alumni, offering insight into how we can all work together to make open source more welcoming and inclusive. Whether you're looking to engage diverse new contributors, or you're just curious about the novice experience, you'll be sure to learn something new!

Speakers

Emily Lovell

Postdoctoral Fellow, UC Santa Cruz OSPO

Dr. Emily Lovell is an OSPO Incubator Fellow at UC Santa Cruz. Her research and teaching use novel domains to invite broader participation in computing, with her postdoctoral work focusing on newcomers to open source. Emily previously served on faculty at Berea College, where she... Read More →

Silas Morgan

Graduate Student and past Contributor Catalyst Mentor, Norfolk State University

Silas Morgan is a Graduate student and Alumni of Norfolk state university. He's majored in computer science, and participated in UCSC's Contributor Catalyst program both as a learner/participant, and as an alumni mentor helping students become engaged with open source. As a participant... Read More →

Wednesday June 25, 2025 2:10pm - 2:50pm MDT
Bluebird Ballroom 3H

Equity + Inclusion + Accessibility

Audience Experience Level Any

2:10pm MDT

Can File Systems Survive in Data-centric World? - Viacheslav Dubeyko, IBM

Wednesday June 25, 2025 2:10pm - 2:50pm MDT

Bluebird Ballroom 2B

The volume of processing data is growing exponentially. AI/ML algorithms, financial transactions, social networks, cloud computing represent modern trends that latency, performance sensitive, and data hungry. File systems represent crucial and fundamental technology that builds foundation of data storage stack. However, pressure of data-centric and data-intensive nature of modern applications revealed significant overhead that file systems introduce in data storage stack. Moreover, massive amount of hardware accelerator and kernel bypassing technologies, dis-aggregated architecture, ultra-fast storage devices create “illusion” or “impression” that file systems could be a redundant item of data storage stack. Can file systems survive in data-centric world?

Speakers

Viacheslav Dubeyko

Linux kernel developer, IBM

Acquired a Ph.D degree in 2002 (X-ray spectroscopy) and served as a researcher in Samsung Electronics, Huawei, HGST, and Western Digital. As a Linux kernel developer contributed in HFS+ and NILFS2 file system drivers and designed a SSDFS open-source file system. Research interests... Read More →

Wednesday June 25, 2025 2:10pm - 2:50pm MDT
Bluebird Ballroom 2B

Linux

Audience Experience Level Intermediate

2:10pm MDT

COSMIC DE - The First Modular, Composable Desktop Environment - Carl Richell, System76

Wednesday June 25, 2025 2:10pm - 2:50pm MDT

Bluebird Ballroom 2C

COSMIC DE is a new, full-featured desktop environment (like GNOME and KDE) written from scratch in the Rust programming language. It does not rely on GTK or Qt. Instead COSMIC uses a new Rust GUI toolkit called iced and the system76 developed libcosmic toolkit for building interfaces and applications with advanced theming and customization features.

COSMIC DE includes a suite of first-party applications including a file browser, text editor, application store, settings, and terminal. There is also a growing community of third-party apps. COSMIC includes a custom compositor that features variable refresh rate, Xwayland support, animations, fractional scaling, modern hybrid graphics features, window snapping and auto-tiling.

What makes COSMIC truly unique is that it's the first modular, composable desktop environment. For a user that means they can easily adapt COSMIC to their preferred workflow. Linux distributions can create wholly unique user experiences.
And companies can develop unique products using COSMIC.

Carl will discuss why system76 built COSMIC DE, show its features, and demonstrate how unique experiences can be composed with COSMIC DE.

Speakers

Carl Richell

CEO, System76

System76 proudly engineers and manufactures premium Linux computers and keyboards at our factory in Denver, Colorado. Our user-driven products, alongside Pop!_OS and COSMIC DE, give creators, makers, and builders the means to bring forth the future.

Wednesday June 25, 2025 2:10pm - 2:50pm MDT
Bluebird Ballroom 2C

Linux

Audience Experience Level Any

2:10pm MDT

Building Your (Local) LLM Second Brain - Olivia Buzek, IBM

Wednesday June 25, 2025 2:10pm - 2:50pm MDT

Bluebird Ballroom 3E

LLMs are hotter than ever, but most LLM-based solutions available to us require you to use models trained on data with unknown provenance, send your most important data off to corporate-controlled servers, and use prodigious amounts of energy every time you write an email.

What if you could design a “second brain” assistant with OSS technologies, that lives on your laptop?

We’ll walk through the OSS landscape, discussing the nuts and bolts of combining Ollama, LangChain, OpenWebUI, Autogen and Granite models to build a fully local LLM assistant. We’ll also discuss some of the particular complexities involved when your solution involves a local quantized model vs one that’s cloud-hosted.

In this talk, we'll build on the lightning talk to include complexities like:
* how much latency are you dealing with when you're running on a laptop?
* does degradation from working with a 7-8b model reduce effectiveness?
* how do reasoning + multimodal abilities help the assistant task?

Speakers

Olivia Buzek

STSM watsonx.ai - IBM Research, IBM

Olivia has been building machine learning and natural language processing models since before it was cool. She's spent several years at IBM working on opening up Watson tech, around the country and around the world.

Wednesday June 25, 2025 2:10pm - 2:50pm MDT
Bluebird Ballroom 3E

Open AI + Data

Audience Experience Level Intermediate

2:10pm MDT

Billy and Eddie's Declassified Git Survival Guide - Billy Lynch, Chainguard & Eddie Zaneski, Defense Unicorns

Wednesday June 25, 2025 2:10pm - 2:50pm MDT

Bluebird Ballroom 3A

Have you ever botched your git repo so badly that you needed to delete it and reclone it? You're not alone!

This talk dives into the dark side of Git - exploring common disasters like accidental force-pushes, tangled merge conflicts, unrelenting rebases, and the dreaded detached HEAD. We'll look at how and why these situations arise, exploring the underlying Git mechanics that got us into the situation and how we can undo or resolve these problems.

You'll come away from this talk with a greater understanding of Git internals, and the knowledge and tools necessary to rescue yourself from any Git workflow gone awry!

Speakers

Billy Lynch

Staff Software Engineer, Chainguard

Eddie Zaneski

Technical Advisor to the CTO, Defense Unicorns

Eddie lives in Denver, CO with his wife and dog. He loves open source and works on the Kubernetes project. When not hacking on random things you'll most likely find him climbing rocks somewhere.

Wednesday June 25, 2025 2:10pm - 2:50pm MDT
Bluebird Ballroom 3A

Open Source 101

Audience Experience Level Beginner

2:10pm MDT

The Work No One Notices—Until It’s Missing: Scaling Open Source Community Teams - Elizabeth Barron, CHAOSS

Wednesday June 25, 2025 2:10pm - 2:50pm MDT

Bluebird Ballroom 3C

Community management in open source is often a catch-all role, with one person juggling contributor engagement, content, events, and growth. But no single individual can—or should—do it all. As projects scale, a structured, team-based approach becomes essential.

This talk introduces a four-part framework for building an effective community team:

- Community Caretakers – Foster an inclusive, welcoming space, ensuring contributors feel heard, valued, and engaged.
- Content Creators – Develop documentation, blogs, and educational materials.
- Growth Drivers – Expand the community through outreach and advocacy.
- Organizers – Handle logistics, events, and data to keep things running smoothly.

We’ll explore why many projects struggle with community management, the pitfalls of prioritizing outreach over engagement, and how a scalable team structure prevents burnout, improves retention, and ensures long-term sustainability.

Whether you're launching or scaling a project, this session provides a practical roadmap for turning fragmented community efforts into a high-impact, sustainable team.

Speakers

Elizabeth Barron

Community Manager, CHAOSS

Elizabeth Barron is a self-employed open source consultant working on projects such as CHAOSS and GitHub's GitSkilled. She is a long-time open source contributor and advocate with over 20 years of experience at companies like GitHub, Pivotal/VMWare, and Sourceforge.She is also an... Read More →

Wednesday June 25, 2025 2:10pm - 2:50pm MDT
Bluebird Ballroom 3C

Open Source Leadership

Audience Experience Level Any

2:10pm MDT

From Wait Times To Real-Time: Empowering DPI for Seamless Citizen Engagements With GenAI Agents - Alex Coqueiro, AWS

Wednesday June 25, 2025 2:10pm - 2:50pm MDT

Bluebird Ballroom 3G

In this session, I will explore how Generative AI agents are becoming a cornerstone of Digital Public Infrastructure (DPI) using open source, reshaping citizen services and empowering governments to deliver more efficient, responsive, and accessible public services. Learn how Generative AI Agents are revolutionizing government websites, offering 24/7 citizen support, and providing real-time assistance across a wide range of public services. With the ability to handle inquiries, process data, and generate personalized responses, these AI agents significantly reduce wait times and streamline interactions, ensuring faster and more seamless communication between citizens and government agencies. We’ll dive into practical applications, from simplifying bureaucracy to enhancing transparency and accountability, and discuss the transformative potential of Generative AI in creating smarter, more inclusive government channels.

Speakers

Alex Coqueiro

Head of Solutions Architecture at AWS, AWS

I oversee the Solutions Architects Team. My responsibilities encompass serving as the technical strategist, effectively guiding and influencing customers in Government, Education, Healthcare, and Non-profit sectors on a day-to-day basis through direct and indirect interactions. I... Read More →

Wednesday June 25, 2025 2:10pm - 2:50pm MDT
Bluebird Ballroom 3G

OpenGovCon

Audience Experience Level Beginner

2:10pm MDT

Using SBOMs for Linux Foundation Projects - Jeff Shapiro, The Linux Foundation & Gary O'Neall, Source Auditor Inc.

Wednesday June 25, 2025 2:10pm - 2:50pm MDT

Bluebird Ballroom 3D

Last year we introduced the LF-SBOM, which we are now generating for many projects. Today we will provide an update on this important effort to provide SBOMs for most critical LF projects. We will review the work done to date, and go into more detail on how to use the LF-SBOM specification. We will give real world concrete examples on how to use our SBOM to generate a Security Vulnerability report, and how to generate a report of open source licenses. We will also discuss how to use our SBOMs to meet new regulations (e.g. US CISA and EU CRA) when delivering software to the government sector, and how to use our SBOM as an example when you create one for your own project.

Speakers

Jeff Shapiro

Director of License Scanning, The Linux Foundation

Jeff Shapiro is the Director of License Scanning for The Linux Foundation. He has 30 years of experience in the software industry, including 10 years in software auditing, open source scanning, and training developers in OSS license compliance.

Gary O'Neall

Founder and Principal Consultant, Source Auditor Inc.

Wednesday June 25, 2025 2:10pm - 2:50pm MDT
Bluebird Ballroom 3D

Operations Management

Audience Experience Level Intermediate

2:10pm MDT

Building a Safe and Open Vehicle Core With Open Source - Philipp Ahmann, Etas GmbH (BOSCH)

Wednesday June 25, 2025 2:10pm - 2:50pm MDT

Bluebird Ballroom 2D

Recently the Safe Open Vehicle Core (S-Core) project was started as a collaborative code-first project between automotive OEMs and Tier suppliers developing a safety-certifiable middleware stack for high-performance ECUs in software-defined vehicles. Targeting the non-differentiating core functionality, S-Core middleware software sits between the hardware abstraction layer and the platform API accessed by vehicle function applications. Compatible with POSIX-based OSes like Automotive Grade Linux and complementary to the ELISA project, S-Core focuses on achieving ISO 26262, ASPICE, and ISO 21434 compliance.

This presentation details S-Core's development process, scope, status, and timeline, highlighting its integration within the broader automotive safety and SDV landscape. The author further showcases the project's work towards robust and automated development through a docs-as-code approach utilizing open-source tools such as ReStructuredText, Sphinx-Needs, Bazel, and PlantUML.

Speakers

Philipp Ahmann

Sr. OSS Commumity Manager, Etas GmbH (BOSCH)

Wednesday June 25, 2025 2:10pm - 2:50pm MDT
Bluebird Ballroom 2D

Safety-Critical Software

Audience Experience Level Intermediate

2:10pm MDT

We Need a Standard for Open Source Package Requirements - Elitsa Bankova & Eve Martin-Jones, Google

Wednesday June 25, 2025 2:10pm - 2:50pm MDT

Bluebird Ballroom 2F

What does a version specification look like? Most would say that one looks something like “1.2.3”.

But what does a requirement look like? That is a more complicated question and answers vary and depend on which packaging ecosystem —Maven, Cargo, PyPI and so on— is involved.

While Semver 2.0 offers a generally agreed upon syntax for versions, there is no standard for requirements.

Understanding how requirements work is required for addressing issues such as vulnerabilities and license conflicts. The absence of an agreed-upon requirement specification limits the ability to understand the problem and limits the sharing of tooling across ecosystems.

Deps.dev has looked at the way requirements are specified in five ecosystems and translated them into a single set representation that enables unified tooling. We’ve discovered many ecosystem-specific quirks, but also discovered much commonality we can build upon.

This talk will define the essence of requirements, demonstrate how they are incompletely met by various existing systems, and most importantly we will argue that a well-defined, well-supported requirement specification is vital to the industry.

Speakers

Eve Martin-Jones

Senior Software Engineer, Google

Elitsa Bankova

Software Engineer, Google

Wednesday June 25, 2025 2:10pm - 2:50pm MDT
Bluebird Ballroom 2F

Standards + Specifications

Audience Experience Level Beginner

2:10pm MDT

Thriving in Open Source: Finding Joy, Avoiding Burnout, and Carving Your Own Path - Sandeep Kanabar, Gen

Wednesday June 25, 2025 2:10pm - 2:50pm MDT

Bluebird Ballroom 2E

Open source contribution is often portrayed as a straightforward journey starting with "good first issues," but the reality is far more nuanced and personal. In this heartfelt talk, I'll share my transformative journey from an overwhelmed beginner to a purposeful contributor, highlighting how I discovered sustainable joy in open source development. Through personal stories and lessons learned, I'll discuss navigating common pitfalls like contributor fatigue, the "what's in it for me" mindset, and the good-first-issue trap. I'll share how local meet-ups, in-person conferences, and finding my passion in accessibility—particularly through my work with the Deaf and hard-of-hearing working group—helped me carve a meaningful path. This talk will provide practical insights for contributors seeking to build a fulfilling, long-term relationship with open source while maintaining their well-being and making a genuine impact on the community.

Note: I'm deaf and this talk reflects my own journey in open source. I'm okay to present this as lightning talk as well.

Speakers

Sandeep Kanabar

Lead Software Engineer | CHAOSS Asia WG, Gen (formerly NortonLifeLock)

Wednesday June 25, 2025 2:10pm - 2:50pm MDT
Bluebird Ballroom 2E

Wildcard, Open Source Leadership

Audience Experience Level Any

2:10pm MDT

Tutorial: Understanding the Carbon Impact of Your Machine Learning Applications - Neeraj Pandey, Vivid Climate & Priyanshi Arora

Wednesday June 25, 2025 2:10pm - 3:45pm MDT

Bluebird Ballroom 3F

This session will guide attendees through the process of understanding and mitigating the carbon emissions of machine learning models and AI systems. We'll delve into methods for measuring the environmental impact of these technologies and discuss the pivotal role developers play in pioneering eco-conscious computing. Participants will gain insights into optimizing algorithms, adopting sustainable coding practices, and choosing energy-efficient tools to minimize the carbon footprint of their machine learning projects.

Additionally, we'll examine the environmental considerations of deploying AI systems in the cloud. As cloud computing becomes integral to deploying AI solutions, understanding its ecological impacts is crucial. We'll cover strategies for making environmentally responsible decisions when selecting and utilizing cloud services, aiming to maintain the eco-friendliness of AI applications.

Together, we'll explore how to balance the demands of advanced computational technologies with the urgent need for sustainability.

Speakers

Neeraj Pandey

Co-Founder, Vivid Climate

Neeraj is the co-founder of Vivid Climate, a climate management and accounting platform. Neeraj is a polyglot. Over the years, he has worked on a variety of full-stack software and data-science applications, as well as computational arts, and likes the challenge of creating new tools... Read More →

Priyanshi Arora

Brand Data Analyst

Priyanshi is a brand data analyst and creative artist.

Wednesday June 25, 2025 2:10pm - 3:45pm MDT
Bluebird Ballroom 3F

Open AI + Data

Audience Experience Level Beginner

2:30pm MDT

"The Missing Role: Why Platform Teams Need Design Leadership” - Luis Queral, The New York Times

Wednesday June 25, 2025 2:30pm - 2:50pm MDT

Bluebird Ballroom 3B

When you think about the role of "design" on an infrastructure team, it's common to think about slicker interfaces or nicer branding. While that might be true, the impact of design-thinking can go far deeper.

In this talk, we'll walk through an unlikely collaboration between our platform engineers and product designers and how this partnership has enabled deep, strategic change from the bottom up.

We'll talk about how we went from "building a technology" to "building a product", allowing us to both increase adoption to our platform and improve our overall product across a balanced mix of developer needs and business asks -- all without sacrificing platform reliability or quality.

We’ll also share tips on how to bring this kind of thinking to your platform team, with or without dedicated designers.

Speakers

Luis Queral

Senior Product Designer, The New York Times

Luis Queral is a software designer and artist based in Baltimore, MD. He works for the New York Times helping lead design efforts on their infrastructure team. He is frequently, and deliberately out of his element and enjoys driving the design strategy of complex software projects... Read More →

Wednesday June 25, 2025 2:30pm - 2:50pm MDT
Bluebird Ballroom 3B

cdCon

Audience Experience Level Any

3:05pm MDT

Session to be Announced

Wednesday June 25, 2025 3:05pm - 3:45pm MDT

Bluebird Ballroom 3B

Wednesday June 25, 2025 3:05pm - 3:45pm MDT
Bluebird Ballroom 3B

cdCon

3:05pm MDT

How To Put Swift in a Box: Container Images From Scratch With Swift Container Plugin - Euan Harris, Apple, Inc.

Wednesday June 25, 2025 3:05pm - 3:45pm MDT

Bluebird Ballroom 2G

Containers have changed how we build and run services. The days of FTPing a binary up to a server are gone, because our platforms expect to run containers. We build container images at every stage of development, whenever we want to test our services, and when we deploy them.

If container images are what we need, could our development tools help us build them? Yes, they can! In this talk, we'll take a container image apart, see what makes it tick, then put it back together again from first principles - all using Swift!

Swift is a high performance, memory-safe language which is ideal for server-side development. We will:

* download a container image, take it apart by hand and explore what’s inside;
* cross-compile a Swift service effortlessly to different Linux distributions, on x86 or ARM, statically or dynamically linked, from development environments on macOS or Linux;
* use Swift's pluggable build system to produce container images efficiently and automatically for every build;
* test the image.

Containers are a universal building block of modern services. Even if you're not yet using Swift, these ideas and principles also underpin your current build and deployment workflow.

Speakers

Euan Harris

Software Engineer, Apple, Inc.

Euan builds cloud services and infrastructure using Swift at Apple. He enjoys working with containers, virtual machines, networks and interesting programming languages. Previously, Euan helped maintain Docker Swarm's overlay networking and HTTP ingress, and contributed to XenServer's... Read More →

Wednesday June 25, 2025 3:05pm - 3:45pm MDT
Bluebird Ballroom 2G

Cloud + Containers

Audience Experience Level Intermediate

3:05pm MDT

Overlay Images To the Rescue - Frank Vasquez, Packt

Wednesday June 25, 2025 3:05pm - 3:45pm MDT

Bluebird Ballroom 2A

The Yocto project offers unparalleled flexbility in how you structure your embedded Linux image builds. Yocto's multilayered approach enables us to build different images for different purposes (e.g. development, production, etc). This flexibility extends beyond the image build process out to runtime.

What if you could load debug symbols onto an edge device? Restart your application with gdbserver? Start bpftrace sessions? Connect to a VPN? All at the press of a button? You can through the magic of systemd and overlayfs. systemd-sysext activates and deactivates system extension images merging them together to compose the contents of your /usr/ and /opt/ directories.

By separating your root filesystem into individual layers that each do one thing and one thing only, you can respond to trouble by reconfiguring your system at runtime. I will show you how to leverage system extension images and btrfs subvolumes to build Yocto images that can be reassembled on demand.

Speakers

Frank Vasquez

Technical Author and Independent Consultant, Packt

Frank Vasquez is a software engineer and published author with over a decade of experience designing and building embedded Linux systems. During that time, he has shipped numerous products including a rackmount DSP audio server, a diver-held sonar camcorder, a consumer IoT hotspot... Read More →

Wednesday June 25, 2025 3:05pm - 3:45pm MDT
Bluebird Ballroom 2A

Embedded Linux Conference

Audience Experience Level Intermediate

3:05pm MDT

Newcomer… but Not New - Emily Shaffer & Ivan Frade, Google

Wednesday June 25, 2025 3:05pm - 3:45pm MDT

Bluebird Ballroom 3H

Most of the advice around new contributor experience is oriented towards developers at the beginning of their career - students or those breaking into the tech industry. This time, though, we want to talk about the basics of contribution for senior developers who already have plenty of industry experience. These potential contributors have more than enough technical expertise, but still struggle to participate in open source. For them the barriers tend to be more social and “communicational” than technical, as their previous incentives, goals, and development cultures are fairly different from those present in most open source communities.

As open source contributors working in a big company, we watch our colleagues face these issues. We want to share our experience and what we learned while trying to help these colleagues participate in open source development for the first time.

Speakers

Emily Shaffer

Staff Software Engineer, Google

Emily Shaffer is a staff software engineer at Google working on Git and other source-control-related open source projects; once upon a time, she comaintained OpenBMC's IPMI stack. She's passionate about software best practices, regular expressions, and her dog, Crash Override.

Ivan Frade

Software Engineer, Google

Long time ago, I installed linux out of curiosity. That led to hobby contributions, which grew into work in the GNOME desktop (via maemo, nokia's flavor for mobile devices), which eventually, after a few other adventures, brought me to Google. Here I work on the git hosting, contributing... Read More →

Wednesday June 25, 2025 3:05pm - 3:45pm MDT
Bluebird Ballroom 3H

Equity + Inclusion + Accessibility

Audience Experience Level Beginner

3:05pm MDT

Enhancing Data Integrity in Linux - Anuj Gupta & Kanchan Joshi, Samsung Semiconductor

Wednesday June 25, 2025 3:05pm - 3:45pm MDT

Bluebird Ballroom 2C

Achieving end-to-end data integrity is essential for modern storage systems, yet Linux still faces challenges in providing full-stack protection. This session explores recent improvements in Linux’s data integrity framework. Specifically this presentation shares detail about:

1. A new io_uring interface that enables applications to attach metadata with I/O requests, ensuring robust data protection.

2. Optimizations to existing integrity mechanisms that improve performance, reduce overhead, and enhance flexibility, all of which have been merged into the mainline kernel.

3. Lastly, we highlight a novel mechanism that allows filesystems to fully utilize device integrity features and helps optimizing host and device resource utilization.

This presentation will deliver in-depth technical insights into these advancements and their role in strengthening Linux storage reliability.

Speakers

Kanchan Joshi

Staff Engineer, Samsung Semiconductor

Kanchan is an upstream kernel developer, and his current work revolves around adding advancements in the Linux I/O stack. He has presented at OSS, LPC, LSF/MM, and SDC. He has engaged in system-software development across operating systems and published papers at USENIX conferences... Read More →

Anuj Gupta

Linux kernel developer, Samsung Semiconductor India

Anuj Gupta is a Linux kernel developer in Global Open Source Team at Samsung. His contributions focus on kernel I/O stack improvements across io_uring, block layer, and NVMe driver. Speaker at Open Source Summit and SNIA SDC. He has also published a paper at USENIX FAST. Contributes... Read More →

Wednesday June 25, 2025 3:05pm - 3:45pm MDT
Bluebird Ballroom 2C

Linux

Audience Experience Level Any

3:05pm MDT

AI Pipelines With OPEA: Best Practices for Cloud Native ML Operations - Ezequiel Lanza, Intel & Melissa McKay, JFrog

Wednesday June 25, 2025 3:05pm - 3:45pm MDT

Bluebird Ballroom 3E

The Open Platform for Enterprise AI (OPEA) is an open source project intended to assist organizations with the realities of enterprise-grade deployments of GenAI apps. Beginning from scratch is a costly endeavor, and the ability to quickly iterate on a solution and determine its viability for your organization is essential to ensure you are making the best moves forward.

During this session, Ezequiel and Melissa will introduce you to the OPEA platform and how to empower your team to build, deploy, and manage AI pipelines more effectively. Attendees will gain insights into best practices for handling complex AI/ML workloads, automating dependency management, and integrating Kubernetes for efficient resource utilization. With a focus on real-world applications, this talk not only showcases the transformative potential of these tools but also encourages attendees to explore new ways to contribute, innovate, and collaborate in driving the future of AI adoption in enterprise environments.

Speakers

Ezequiel Lanza

Open Source AI Evangelist, Intel

Melissa McKay

Head of Developer Relations, JFrog

Wednesday June 25, 2025 3:05pm - 3:45pm MDT
Bluebird Ballroom 3E

Open AI + Data

Audience Experience Level Intermediate

3:05pm MDT

Open Collaboration in Action: How We Build RISC-V - Rafael Sene, The Linux Foundation | RISC-V International

Wednesday June 25, 2025 3:05pm - 3:45pm MDT

Bluebird Ballroom 3A

Discover the power of open collaboration with this behind-the-scenes journey into the creation of RISC-V. This session unveils how a global community of engineers, researchers, and innovators work together to design and refine the RISC-V instruction set architecture, bringing open-source principles to silicon. From the challenges of aligning diverse contributions to the triumphs of groundbreaking breakthroughs, you'll learn how the RISC-V ecosystem fosters creativity, accelerates innovation, and democratizes hardware development. Whether you're a seasoned developer or new to hardware design, this talk will inspire you to join the movement redefining the future of computing. Don’t miss this opportunity to see open collaboration in action and learn how you can contribute to shaping the RISC-V revolution!

Speakers

Rafael Sene

Technical Program Manager, The Linux Foundation | RISC-V International

Rafael Peria de Sene is a Technical Program Manager at the Linux Foundation and RISC-V International with over 15 years of experience in software engineering and technical leadership. He has played a key role in expanding the RISC-V ecosystem globally, particularly in Latin America... Read More →

Wednesday June 25, 2025 3:05pm - 3:45pm MDT
Bluebird Ballroom 3A

Open Source 101

Audience Experience Level Beginner

3:05pm MDT

Panel Discussion: Build a Great Business on Open Source Without Selling Your Soul - Robert Hodges, Altinity; Ann Schlemmer, Percona; Tatiana Krupenya, DBeaver

Wednesday June 25, 2025 3:05pm - 3:45pm MDT

Bluebird Ballroom 3C

A profitable business is one of the best protections for commercial open source projects and communities that depend on them. This talk draws on the experience of companies that pulled it off to explain how to do it for your own projects. We’ll discuss commercial models that actually work, giving back to the community, and gracefully collecting money for free software. We'll also touch on topics for larger projects like foundations and taking VC funding. It is possible to balance a strong belief in open source communities with making payroll every two weeks. We've done it and will share our secrets.

Speakers

Ann Schlemmer

CEO, Percona

Ann is a seasoned leader & advocate for open source with over 15 years experience in open source. CEO of Percona, a world-class open source database software firm, she is driven by passion for people & belief in open source's power to create an inclusive tech industry. Her authenticity... Read More →

Tatiana Krupenya

CEO, DBeaver

CEO of DBeaver, universal database management tool

Robert Hodges

CEO, Altinity

Robert Hodges serves as CEO at Altinity, a leading software and services provider for ClickHouse. Robert has more than 30 years of experience with database systems and applications including pre-relational databases such as M204, online SQL transaction processing, Hadoop, and analytics... Read More →

Wednesday June 25, 2025 3:05pm - 3:45pm MDT
Bluebird Ballroom 3C

Open Source Leadership

Audience Experience Level Intermediate

3:05pm MDT

Building Trust Through Proactive Security - Key Parts of the Trusted Software Supply Chain - Przemyslaw Roguski & Ralph Bean, Red Hat

Wednesday June 25, 2025 3:05pm - 3:45pm MDT

Bluebird Ballroom 3G

As security concerns continue to grow in the software industry, customers seek assurance that the software they rely on is built securely. While applying security patches is essential, it is equally important to understand the proactive measures taken throughout the development process to ensure that our software is built securely.

Red Hat follows a comprehensive Secure Software Development Lifecycle (SDLC) framework to improve software security during the entire software lifecycle. We use an open source end-to-end build and release environment, which uses SLSA framework as a guide for reinforcing and gating the build process to secure and fortify your software supply chain against various threats.

This session will include:
- The key difference between proactive and reactive security measures.
- SDLC objectives and how Red Hat achieves them to meet high security standards.
- Overview of how automated testing and open-source solutions enhance SDLC.
- Proactive vulnerability management during the build lifecycle phase.
- Secure software building with attestation data production, including CSAF/VEX and SBOM.
- Future of AI testing within the software supply chain security.

Speakers

Przemyslaw Roguski

Principal Product Security Engineer, Red Hat

Przemysław “Rogue” Roguski is a Security Architect at Red Hat who specializes in shift-left security initiatives included in build and release processes. He is focused on the security data improvements, especially security data usability in the vulnerability management and production... Read More →

Ralph Bean

Senior Principal Software Engineer, Red Hat

Ralph is an engineer at Red Hat and member of the Konflux Governance Committee. He's happiest when learning new things, the open source way.

Wednesday June 25, 2025 3:05pm - 3:45pm MDT
Bluebird Ballroom 3G

OpenGovCon

Audience Experience Level Beginner

3:05pm MDT

Let's Play AI Supply Chain Candyland! - Sarah Evans, Dell Technologies & Christopher Robinson, OpenSSF - The Linux Foundation

Wednesday June 25, 2025 3:05pm - 3:45pm MDT

Bluebird Ballroom 3D

Picture the WHOLE software supply chain, beginning to end; it's a little like that olde tyme classic, "Candyland".

Designed NOT with preschoolers in mind, AI Supply Chain Candy Land is for everyone interested in learning about the software supply chain for AI/ML. Travel through exotic locations like The Peppermint Forest of swirly-twirly dependencies, The Fudgy Swamp of Compliance, and much more!

AI/ML is a fast-moving space within technology. However, everything we've learned in software engineering of the last few decades ALSO applies to this "new" world of AI/ML. We'll apply traditional software supply chain security techniques and, wherever able, tools to help developers and consumers win AI Supply Chain Candyland.

Through an enjoyable and colorful game, with useful examples taken from standards and frameworks, the audience will have a better appreciation and ability to apply supply chain security concepts and tools to the development and support of AI/ML-based solutions.

Speakers

Christopher "CRob" Robinson

Security Lorax, OpenSSF

Sarah Evans

Distinguished Engineer, Dell Technologies

Sarah is a security innovation researcher, leveraging diverse experiences as an IT and security practitioner to improve security by design in emerging technologies. Prior to Dell, Sarah has had roles at in the finance, defense, manufacturing and education industries. Sarah also contributes... Read More →

Wednesday June 25, 2025 3:05pm - 3:45pm MDT
Bluebird Ballroom 3D

Operations Management

Audience Experience Level Intermediate

3:05pm MDT

Software Supply Chain for the SDV Future — Logistics, Cybersecurity and Compliance - Hasan Yasar, Software Engineering Institute | Carnegie Mellon University

Wednesday June 25, 2025 3:05pm - 3:45pm MDT

Bluebird Ballroom 2D

The shift towards software-defined vehicles (SDVs) is set to profoundly impact Original Equipment Manufacturers (OEMs) and their supply chains. As vehicles become increasingly defined by software and connectivity, OEMs face a new era of software supply chain logistics that emphasizes agility, cybersecurity, and regulatory compliance. This presentation examines how SDV technology affects each stage of the OEM supply chain, from sourcing and logistics to manufacturing and data-driven optimization. Critical to this transformation is the secure management of software and data flows across the supply chain, with a focus on cybersecurity strategies to counter software-based vulnerabilities. Additionally, the presentation explores how data analytics can be leveraged to streamline logistics and ensure compliance with rapidly evolving regulations

Speakers

Hasan Yasar

Technical Director, Software Engineering Institute | Carnegie Mellon University

Hasan Yasar is the Technical Director of Continuous Deployment of Capability group in Software Engineering Institute, CMU. Hasan leads an engineering group to enable, accelerate and assure Transformation at the speed of relevance by leveraging, DevSecOps, Agile, Lean AI/ML and other... Read More →

Wednesday June 25, 2025 3:05pm - 3:45pm MDT
Bluebird Ballroom 2D

Safety-Critical Software

Audience Experience Level Advanced

3:05pm MDT

Panel Discussion: Strengthening Software Supply Chains: Harmonizing SLSA Provenance and SPDX SBOM for Better Adoption - Gopi Krishnan Rajbahadur & Elyas Rashno, Queen's University; Mihai Maruseac, Google; Karen Bennet, Responsible AI Solutions

Wednesday June 25, 2025 3:05pm - 3:45pm MDT

Bluebird Ballroom 2F

The Software Bill of Materials (SBOM) and Supply-chain Levels for Software Artifacts (SLSA) are key frameworks for securing modern software supply chains. SPDX SBOM provides a detailed inventory of software components, dependencies, and metadata, while SLSA ensures these components are built through verifiable, tamper-resistant processes with clear provenance.

This talk will examine the synergies and differences between SLSA and SPDX SBOM, focusing on how SLSA’s provenance and authentication mechanisms can enhance the trustworthiness of SBOMs. We will explore overlapping fields captured by both standards, emphasizing the importance of interoperability and a shared roadmap to reduce duplication while leveraging their respective strengths.

A clear separation of concerns, with SLSA handling provenance and verification, and SPDX SBOM capturing comprehensive component metadata, can reduce redundancy and promote more efficient adoption. This session will outline how aligning these standards can improve software supply chain security and reliability, while fostering collaboration for cohesive evolution within the open-source community.

Speakers

Gopi Krishnan Rajbahadur

Research Fellow, Queen's University

Gopi Krishnan Rajbahadur is a Research Fellow at Queen's University, Canada. He is currently working on SE for Large Language Models and the governance of AI datasets. He is the co-lead for the AI and datasets profile in the ISO/IEC 5692 SPDX standard and co-founder of the open-source... Read More →

Mihai Maruseac

Staff SWE, Google

Mihai Maruseac is a member of Google Open Source Security team (GOSST), working on Supply Chain Security, specifically for ML, but also a GUAC maintainer. Before joining GOSST, Mihai created the TensorFlow Security team after joining Google, moving from a startup to incorporate Differential... Read More →

Elyas Rashno

Research Assistant, Queen’s University

I am a PhD student at Queen’s University with a background in Artificial Intelligence, specializing in transformer-based models and multimodal data fusion. My current work focuses on software engineering and the governance of dataset profiles. Additionally, I contribute to the development... Read More →

Karen Bennet

Executive Director, AI Expert for ISO and IEEE, Responsible AI Solutions

Executive Director, Responsible AI Solutions, former executive of IBM, Yahoo, Red Hat and multiple AI startups, Co-Chair of Linux Foundation SPDX AI and Dataset Groups, IEEE Vice Chair Technology Society Impact Committee, Canadian expert of ISO/IEC JTC 1/SC 42 Participant in US CISA... Read More →

Wednesday June 25, 2025 3:05pm - 3:45pm MDT
Bluebird Ballroom 2F

Standards + Specifications

Audience Experience Level Intermediate

3:05pm MDT

Towards a Better Adoption Model - Nigel Brown, AWS

Wednesday June 25, 2025 3:05pm - 3:45pm MDT

Bluebird Ballroom 2E

The Linux Foundation has hundreds of projects under its auspices all working to gain adoption — especially in the case of forks like OpenBao and Valkey. In this struggle for adoption, projects could be doing more in support of our common goal. This talk proposes a system by which projects can work together, integrate each other, and increase cohesion between projects under a common foundation. This talk will serve as the opening of a discussion meant to engage both the participants and maintainers of projects and Linux Foundation community members.

Speakers

Nigel Brown

Senior OSS Developer Advocate, Valkey, AWS

Nigel is a Senior Developer Advocate based in Austin, Texas. He was drawn to the craft of software engineering because of the agency it provides people to build and interact with worlds of their own creation. He focuses on Cloud Native technologies and his passions in technology are... Read More →

Wednesday June 25, 2025 3:05pm - 3:45pm MDT
Bluebird Ballroom 2E

Wildcard, Open Source Leadership

Audience Experience Level Beginner

3:45pm MDT

Coffee Break

Wednesday June 25, 2025 3:45pm - 4:20pm MDT

Bluebird Ballroom Foyer (Level 1 - Terrace Level)

Wednesday June 25, 2025 3:45pm - 4:20pm MDT
Bluebird Ballroom Foyer (Level 1 - Terrace Level)

Special Events / Exhibits / Breaks

4:20pm MDT

SBOMs in the Real World: Practical Guidance for Managing Three Common SBOM Scenarios - Cortez Frazier Jr., FOSSA

Wednesday June 25, 2025 4:20pm - 4:40pm MDT

Bluebird Ballroom 2F

The last 12-18 months have been a landmark period for SBOM (software bill of materials) adoption. Although a fair number of organizations have been producing SBOMs for multiple years (often for specific regulatory compliance purposes), a much larger group has recently implemented broader SBOM management programs that cover a wider range of use cases.

This presentation — “SBOMs in the Real World: Practical Guidance for Three Common SBOM Scenarios” — will focus on three of these emerging areas:

SBOM generation and distribution to meet customer requests and new regulatory requirements
SBOM aggregation from internal teams and product units to facilitate centralized vulnerability management and response
SBOM ingestion from external software supplier networks to facilitate first- and third-party vulnerability management and response

Each section of this talk — which is based on extensive firsthand experience directly supporting numerous SBOM programs (from organizations in multiple regions, industries, and stages of maturity) — will include specific guidance to help attendees understand how SBOM programs within their organizations can more effectively manage these scenarios.

Speakers

Cortez Frazier Jr.

Principal Product Manager, FOSSA

Cortez Frazier Jr. is the product lead for FOSSA. FOSSA is a developer software composition analysis tool for managing open source license compliance and security vulnerabilities. Before joining FOSSA, Cortez served as product lead for all of Puppet’s SaaS-based products Earlier... Read More →

Wednesday June 25, 2025 4:20pm - 4:40pm MDT
Bluebird Ballroom 2F

Standards + Specifications

Audience Experience Level Intermediate

4:20pm MDT

cdCon Closing & Award Ceremony

Wednesday June 25, 2025 4:20pm - 5:00pm MDT

Bluebird Ballroom 3B

Wednesday June 25, 2025 4:20pm - 5:00pm MDT
Bluebird Ballroom 3B

cdCon

4:20pm MDT

Beyond Parent-Child: Enhancing Context Propagation With Span Links in Complex Distributed Systems - Haardik Dharma, NYU & Ekansh Gupta, SigNoz

Wednesday June 25, 2025 4:20pm - 5:00pm MDT

Bluebird Ballroom 2G

Context propagation is the cornerstone of observability in distributed systems, but traditional approaches often falter in non-linear workflows like message queues, event-driven architectures, state transitions, or shared resources. Span links powered by OpenTelemetry, bridge this gap by enabling connections between spans across unrelated execution contexts.

This session explores a practical use case where span links augment context propagation in an event-driven microservices system. We'll demonstrate how to track a single user's transaction across services that communicate asynchronously. Using tools like OpenTelemetry and compatible backends, we'll show how span links resolve visibility challenges, uncover hidden latencies, and maintain trace continuity even when the standard parent-child relationships break.

Speakers

Haardik Dharma

Developer, NYU

Haardik is passionate about building scalable backend systems with real-world impact. With extensive experience in cloud services, Kubernetes, and backend development, he has developed solutions that improve efficiency and reduce costs. Currently pursuing a Master’s in Computer... Read More →

Ekansh Gupta

Software Engineer, SigNoz

Ekansh is a Software Development Engineer, with active involvement in various open-source and cloud native communities for upwards two years now. He was previously an SDE Intern at SteamLabs. He is also a speaker for a couple of talks at PyCon, KubeCon and MozFests. Ekansh is a Google... Read More →

Wednesday June 25, 2025 4:20pm - 5:00pm MDT
Bluebird Ballroom 2G

Cloud + Containers

Audience Experience Level Any

4:20pm MDT

Rusty OP-TEE Trusted Applications - Sumit Garg, Qualcomm Inc.

Wednesday June 25, 2025 4:20pm - 5:00pm MDT

Bluebird Ballroom 2A

OP-TEE is an open source Trusted Execution Environment (TEE) designed as a companion to the rich Linux operating system environment. Memory safety is critical to OP-TEE because its applications provide secure interfaces that can be used by the (potentially compromised) rich OS to manipulate user's/system credentials, keys and confidential data. In particular Rust's memory-safety guarantees can be a huge step forward to harden the OP-TEE environment against any memory based exploits.

This session will focus on the evolution of Rust within the OP-TEE ecosystem, the story to make Rust a first class citizen for writing OP-TEE Trusted Applications (TAs) and how we can build Rust TAs at performance parity with their C counterparts. As well as reviewing the work to date, we'll also look at some options for leveraging Rust's memory- and thread-safety features within OP-TEE core itself: should we start with enabling pseudo trusted applications to be written in Rust?

Speakers

Sumit Garg

Senior Staff Engineer, Qualcomm Inc.

Sumit works as a Senior Staff Engineer in Qualcomm Inc. He has contributed to various FOSS projects like Linux (maintainer/reviewer for different sub-systems/drivers), U-Boot, OP-TEE, Trusted Firmware (TF-A) and more. Sumit's other areas of interest includes toolchains and embedded... Read More →

Wednesday June 25, 2025 4:20pm - 5:00pm MDT
Bluebird Ballroom 2A

Embedded Linux Conference

Audience Experience Level Intermediate

4:20pm MDT

The Business Case for Full-Cycle DEI Integration - Wambui Gatheru, Attentive

Wednesday June 25, 2025 4:20pm - 5:00pm MDT

Bluebird Ballroom 3H

The open source world thrives on collaboration, transparency, and the creativity of its diverse contributors. However, recent divestment from DEI initiatives poses challenges to sustaining these values. Many organizations have focused on cultural performativity rather than embedding DEI into their core strategies, missing opportunities for long-term impact.

This session redefines DEI in open source, exploring what it means to embrace diversity, provide equitable opportunities for underrepresented contributors, and foster inclusion in a global, decentralized ecosystem. Attendees will gain actionable strategies to integrate DEI into projects and organizations, from fostering equitable collaboration to building inclusive governance structures and promoting diverse leadership.

With real-world examples and practical tools, this session offers a roadmap for healthier, more innovative, and sustainable open source communities. Together, we’ll uncover how a full-cycle DEI approach strengthens the ecosystem, ensuring environments where everyone can thrive.

Speakers

Wambui Gatheru

Senior DEIB Business Partner, Attentive

Wambui Gatheru (she/her) is a dynamic DEI leader with over a decade of experience driving cultural transformation and creating equitable workplaces. With expertise across non-profit and for-profit sectors—including democracy reform, sustainability, and tech—she blends community... Read More →

Wednesday June 25, 2025 4:20pm - 5:00pm MDT
Bluebird Ballroom 3H

Equity + Inclusion + Accessibility

Audience Experience Level Any

4:20pm MDT

An Investigation of Patch Porting Practices of the Linux Kernel Ecosystem - Xingyu Li, UC Riverside

Wednesday June 25, 2025 4:20pm - 5:00pm MDT

Bluebird Ballroom 2B

The Linux ecosystem—spanning upstream mainline, stable and LTS branches, and downstream distributions like Ubuntu and Android—relies on patch porting to ensure stability and security. However, concerns persist about delayed or incomplete patch propagation. By mining software repositories across 28 Linux branches (e.g., Android,Ubuntu,Debian,OpenSLE and etc) and 584K patches., we uncover diverse patch porting strategies and their trade-offs, measured through patch delay, patch rate, and bug inheritance ratio. We also analyze the factors influcing the patch porting practices and offer actionable insights to enhance patch flow efficiency and strengthen the Linux ecosystem.

Speakers

Xingyu Li

PhD candidate; Research assistant, UC Riverside

I am a final year PhD student in UC Riverside in computer science. I am working on improving Linux kernel security by investigating Linux patch porting strategy, identifying silent serious patches and improving fuzzing efficiency.

Wednesday June 25, 2025 4:20pm - 5:00pm MDT
Bluebird Ballroom 2B

Linux

Audience Experience Level Any

4:20pm MDT

Rex: Safe and Usable Kernel Extensions in Rust - Jinghao Jia, University of Illinois Urbana-Champaign

Wednesday June 25, 2025 4:20pm - 5:00pm MDT

Bluebird Ballroom 2C

We present the Rex project (https://github.com/rex-rs/rex). Rex is a Linux kernel extension framework that allows extension programs to be written in safe Rust. Rex offers similar safety guarantees to eBPF. Unlike eBPF-based tools like Aya, Rex extensions are not compiled into eBPF bytecode. Rex eliminates the in-kernel verifier – the safety of Rex extensions is built atop language-based safety plus runtime protection. Specifically, the Rex compiler enforces Rex extensions to be written in a subset of safe Rust, and emits native code directly. Rex implements its kernel crate with a safe interface that wraps existing eBPF interface. Rex also employs a lightweight runtime that implements graceful Rust panic handling with resource cleanups, kernel stack checks, and program termination.

Rex provides a more usable and arguably safer alternative to eBPF. The usability advantage comes from the elimination of in-kernel verifiers that are known to reject safe extension programs with cryptic feedback. We also show that Rex’s runtime protection provides stronger safety than eBPF in a few aspects, e.g., protecting kernel stacks from overflowing.

More details: https://tinyurl.com/y8uj8ypp

Speakers

Jinghao Jia

Ph.D., University of Illinois Urbana-Champaign

Jinghao Jia is a fourth year Ph.D. student at UIUC. His research focus on operating system kernel extensions (e.g. eBPF). Specifically, he works on building safe and reliable kernel extensions as well as the applications of these kernel extensions in practice.

Wednesday June 25, 2025 4:20pm - 5:00pm MDT
Bluebird Ballroom 2C

Linux

Audience Experience Level Any

4:20pm MDT

Accelerating GenAI Innovation: Lessons From Intuit's Agents and Tools Framework - Shradha Ambekar & Conrad De Peuter, Intuit

Wednesday June 25, 2025 4:20pm - 5:00pm MDT

Bluebird Ballroom 3F

Join us to discover how Intuit's GenAI framework is reshaping AI development, enabling swift integration of AI functions across varied business units. We'll focus on a robust framework of reusable agents and tools derived from open-source technologies like LangChain/LangGraph, facilitating diverse functionalities from simple data retrieval to complex processes such as query generation, optimization, pipeline creation and debugging. This framework dramatically reduces the time required for data workers to operationalize data pipelines and supports diverse customer interactions through notebooks, no-code approaches, REST integrations, and Python libraries, catering to a wide range of needs including agent developers and teams in pre-production settings. Our meticulous evaluation process ensures that each tool and agent is rigorously tested against high-performance benchmarks to guarantee reliability and consistency before deployment. By centralizing these AI components, Intuit has not only accelerated development timelines but also upheld a high standard of quality, establishing a benchmark for crafting scalable, effective AI solutions in the dynamically evolving tech landscape.

Speakers

Conrad De Peuter

Senior Staff AI Scientist, Intuit

Conrad De Peuter is a Senior Staff AI Scientist and Manager at Intuit. He has worked on deep learning models in the document understanding space, delivering reusable AI services from a central platform, and most recently as the lead for a portfolio of product-focused R&D projects... Read More →

Shradha Ambekar

Senior Staff Software Engineer, Intuit

Shradha Ambekar is a senior staff software engineer with the Data Platform Group at Intuit. She is an experienced technologist and has led projects working with GENAI, Spark, Kafka, Presto, Athena, Cassandra and Vertica. She has made numerous open-source contributions to presto, calcite... Read More →

Wednesday June 25, 2025 4:20pm - 5:00pm MDT
Bluebird Ballroom 3F

Open AI + Data

Audience Experience Level Beginner

4:20pm MDT

Scalable and Efficient LLM Serving With the VLLM Production Stack - Junchen Jiang, University of Chicago & Yue Zhu, IBM Research

Wednesday June 25, 2025 4:20pm - 5:00pm MDT

Bluebird Ballroom 3E

Large Language Models (LLMs) are reshaping how we build applications; however, efficiently serving them at scale remains a major challenge.

The vLLM serving engine, historically focused on single-node deployments, is now being extended into a full-stack inference system through our open-source project, **vLLM Production Stack**. This extension enables any organization to deploy vLLM at scale with high reliability, high throughput, and low latency.
Code: https://github.com/vllm-project/production-stack

At a high level, the vLLM Production Stack project allows users to easily deploy to their Kubernetes cluster through a single command. vLLM Production Stack's optimizations include KV cache sharing to speed up inference (https://github.com/LMCache/LMCache), prefix-aware routing that directs inference queries to vLLM instances holding the corresponding KV caches, and robust observability features for monitoring engine status and autoscaling.

Attendees will discover best practices and see real-time demonstrations of how these optimizations work together to enhance LLM inference performance.

Speakers

Junchen Jiang

Assistant Professor, University of Chicago

Junchen Jiang is an Assistant Professor of CS at the University of Chicago. His research pioneers new approaches to LLM inference systems (https://github.com/vllm-project/production-stack and https://github.com/LMCache/LMCache). He received his Ph.D. from CMU in 2017 and his bachelor’s... Read More →

Yue Zhu

Staff Research Scientist, IBM Research

Yue Zhu is a Staff Research Scientist specializing in foundation model systems and distributed storage systems. Yue obtained a Ph.D. in Computer Science from Florida State University in 2021 and has consistently contribute to sustainability for foundation models and scalable and efficient... Read More →

Wednesday June 25, 2025 4:20pm - 5:00pm MDT
Bluebird Ballroom 3E

Open AI + Data

Audience Experience Level Intermediate

4:20pm MDT

Open Source and CVE's: A Love Story? - Marcus Tenorio, ControlPlane

Wednesday June 25, 2025 4:20pm - 5:00pm MDT

Bluebird Ballroom 3A

When we think of Open Source and CVEs, only bad things come to mind—problems and headaches.

But what if I told you that’s not the case? That, in fact, OSS and CVEs form one of the greatest love stories humanity has ever known. Forget Romeo and Juliet; think Log4J and other "love tales" .

In this talk, we’ll explore how, like every beautiful love story, there are villains, triumphs, and a vibrant community behind it all.

Join us for this fairy tale where we uncover why OSS and CVEs have always been in love with each other.

Speakers

Marcus Tenorio

Engineering Manager, ControlPlane

Mart is an engineering manager at ControlPlane, where he enjoys managing various consultants who teach him every day how to break things and become a better manager and engineer. Mart began his journey in cybersecurity trying to understand why so many people liked prime numbers... Read More →

Wednesday June 25, 2025 4:20pm - 5:00pm MDT
Bluebird Ballroom 3A

Open Source 101

Audience Experience Level Beginner

4:20pm MDT

Removing the Walls Around the Garden: Why the Time Has Come To Disrupt Mobile Application Developmen - Hilary Carter, The Linux Foundation

Wednesday June 25, 2025 4:20pm - 5:00pm MDT

Bluebird Ballroom 3C

Open Mobile Hub and LF Research partnered this year to explore the state of mobile application development in the face of a fragmented and monopolistic market with growing numbers of new devices to integrate. In this session, a panel of research team members from the Linux Foundation and Open Mobile Hub will discuss the findings of their research, examining the insights generated from interviews with mobile application experts across the community. Discussion topics will include hindrances to market entry, current pain points from integration with diverse services, and the APIs that developers care most about. Panelists will deliberate on, from a cross-platform perspective, the preferred frameworks to build mobile applications and the importance of open source in this context. An important use case in this discussion will be the development of wallets and payments ecosystems, with OpenWallet Foundation represented in the conversation. Grounded in the findings from this study, audience members will shift their thinking around accommodating a walled-garden approach to a more open, streamlined, and standardized application ecosystem.

Speakers

Hilary Carter

SVP of Research, The Linux Foundation

Hilary Carter is SVP of Research at the Linux Foundation, supporting the development of open source research projects and publications at the Linux Foundation. As a writer, researcher, and program leader, Hilary produces engaging, decision-useful insights that broaden the understanding... Read More →

Wednesday June 25, 2025 4:20pm - 5:00pm MDT
Bluebird Ballroom 3C

Open Source Leadership

Audience Experience Level Any

4:20pm MDT

Trust but Verify: Uncovering the Hidden Risks of Inaccurate SBOMs With JBomAudit - Yue Xiao, Jiyong Jang, Douglas Schales & Dhilung Kirat, IBM Research

Wednesday June 25, 2025 4:20pm - 5:00pm MDT

Bluebird Ballroom 3G

Software supply chain attacks have surged in recent years, posing significant threats to organizations. In response, Software Bill of Materials (SBOMs)—structured inventories that document software components—have been proposed to enhance supply chain transparency, track dependencies, and manage vulnerabilities. Despite increasing adoption, their correctness and completeness in real-world open-source ecosystems remain largely unexamined. Incomplete SBOMs can result in overlooked vulnerabilities while incorrect dependency may waste resources on non-existent issues.

This talk introduces JBomAudit, an open-source tool to automatically verify Java SBOMs by systematically assessing their correctness and completeness against NTIA minimum requirements. We will cover technical details of JBomAudit, demonstrate how it examines missing and incorrect dependencies, and present findings from our large-scale analysis of over 25,000 Java SBOMs, highlighting the prevalence of non-compliant SBOMs and security implications. We will also discuss common pitfalls in SBOM generation, analyze the root causes of non-compliance, and provide actionable recommendations to improve SBOM quality.

Speakers

Douglas Schales

Senior Technical Staff Member, IBM

Doug Schales is a Senior Technical Staff Member at IBM Research. He has been involved in security research for over 30 years. His interests are in the areas of using generative AI for security, as well as the application of sketch and probabilistic algorithms in security.

Dhilung Kirat

Senior Research Scientist, IBM Research

Dhilung Kirat is a Research Scientist in the AI Supply Chain Security group of the Security Research department at IBM T.J. Watson Research Center. Dhilung received his PhD in Computer Science from University of California, Santa Barbara in 2015. His research interests revolve around... Read More →

Jiyong Jang

Principal Research Scientist, IBM Research

Jiyong Jang is a Principal Research Scientist at IBM Research. His research interests include most areas of computer security, with an emphasis on software and network security. His current research focuses on security analytics to detect advanced threats in complex networking systems... Read More →

Yue Xiao

Research Scientist, IBM Research

Dr. Yue Xiao is a Research Scientist at IBM Watson Research. She earned her Ph.D. from Indiana University Bloomington, focusing on GenAI security, privacy compliance, vulnerability assessment, and supply chain security. She has published in top venues (CCS, Usenix Security, NDSS... Read More →

Wednesday June 25, 2025 4:20pm - 5:00pm MDT
Bluebird Ballroom 3G

OpenGovCon

Audience Experience Level Any

4:20pm MDT

How To Stay Compliant With and Take Benefits From the EU CRA (Cyber Resilience Act) - Roman Zhukov, Red Hat

Wednesday June 25, 2025 4:20pm - 5:00pm MDT

Bluebird Ballroom 3D

The EU Cyber Resilience Act (CRA) aims to safeguard European consumers and at first glance it targets only the EU market. But in fact the entire OSS ecosystem falls under its scope as CRA creates mandatory cybersecurity requirements for vendors, distributors, integrators, even enterprise consumers and, in fact, the entire open-source ecosystem by introducing terms like “Manufacturer”, “Steward”, “Individual developer” among others. So, how to ensure **you** stay compliant?

I’ll cover what we, as part of the various working and regulatory expert groups, are doing to help the entire open-source community navigate the actual requirements. We’ll explore how these roles are played together by the leading industry players (yes, revealing some non-trivial scenarios) and what best practices and tools can be used right away for your organization or by you as an individual contributor. Finally, let’s discuss how we together should turn CRA into an opportunity to make open-source better for all.

Speakers

Roman Zhukov

Principal Security Community Architect, Red Hat

Wednesday June 25, 2025 4:20pm - 5:00pm MDT
Bluebird Ballroom 3D

Operations Management

Audience Experience Level Beginner

4:20pm MDT

Continuous Compliance in Open Source: Safety Assurance Through SBOM-Driven Traceability in ELISA - Rinat Shagisultanov & Troy Sabin, InfoMagnus, LLC

Wednesday June 25, 2025 4:20pm - 5:00pm MDT

Bluebird Ballroom 2D

As open-source adoption expands into safety-critical domains, ensuring continuous compliance is a growing challenge. This session, grounded in the ELISA (Enabling Linux in Safety Applications) project, explores how SBOM-driven traceability can bridge the gap between open-source development and regulatory safety requirements. We’ll cover how SPDX 3.x, automated CI/CD workflows, and tools like ELISA’s BASIL enable traceability between compliance requirements, validation tests, and software components. Attendees will gain insights into best practices for managing SBOM evolution, mitigating risks in change impact analysis, and integrating compliance automation into modern DevOps pipelines. Whether you’re in open-source governance or safety-critical software engineering, this session provides actionable strategies to align compliance with innovation.

Speakers

Rinat Shagisultanov

VP of Technology, InfoMagnus

Creative and Innovative technology strategy advisor with 25+ years of experience envisioning, implementing, and communicating products, services and processes to business and IT stakeholders while leading, inspiring and building trust. Rinat is holding degrees in MS Computer Science... Read More →

Troy Sabin

Chief Architect, InfoMagnus, LLC

Troy is a digital strategist and software architect focused on building innovative products with web, mobile, cloud, and AI technologies. He works at the intersection of business, tech, and design—helping cross-functional teams turn ideas into real-world solutions. Troy has launched... Read More →

Wednesday June 25, 2025 4:20pm - 5:00pm MDT
Bluebird Ballroom 2D

Safety-Critical Software

Audience Experience Level Intermediate

4:20pm MDT

If I Could Turn Back Time - What Open Source and Tech History Tells Us About the Future - Melissa Evers, Intel

Wednesday June 25, 2025 4:20pm - 5:00pm MDT

Bluebird Ballroom 2E

In this session, we will examine critical moments in Open Source history, from the early days of the kernel and birth of the Linux Foundation, to Software defined networking, to Containerization and Cloud Native, to Web, to AI; examine what can be distilled as transcendent truths, and what that tells us about our future? How should it inform the ways we build our software strategies? Attendees will leave inspired, curious and wanting to learn more.

Speakers

Melissa Evers

Vice President - Office of the CTO, GM of Software and Ecosystem Enablement, Intel

Melissa Evers is Vice President in the Office of the CTO and General Manager of the Software Ecosystem Enablement organization at Intel Corporation where she is responsible Software ecosystem and developer programs. Melissa holds a bachelor’s degree in engineering and an MBA from... Read More →

Wednesday June 25, 2025 4:20pm - 5:00pm MDT
Bluebird Ballroom 2E

Wildcard, Operations Management

Audience Experience Level Any

4:40pm MDT

Expanding the OpenChain Standards Portfolio - More Sister Standards? - Shane Coughlan, The Linux Foundation

Wednesday June 25, 2025 4:40pm - 5:00pm MDT

Bluebird Ballroom 2F

A discussion has opened inside the OpenChain community regarding what future standards may join the existing portfolio of ISO/IEC 5230 for license compliance and ISO/IEC 18974 for security assurance.

The focus of the OpenChain Project is on building trust in the supply chain, and on doing this from the perspective of compliance matters. In the last year, the project has begun to prepare guides for SBOM Quality Management and AI Bill of Material Compliance in the Supply Chain. Both of these read against the project charter and mission.

This talk will explore how these two guides could potentially grown into future ISO standards via the existing practices of the OpenChain Project and lessons learned in making ISO/IEC 18974 in the 2023/2024 period. Rather than announcing new standards, the talk is sharing the processes involved in consideration, to illustrated how open projects address ideas and proposals from all parties in a genuinely inclusive manner.

Speakers

Shane Coughlan

OpenChain General Manager, The Linux Foundation

Wednesday June 25, 2025 4:40pm - 5:00pm MDT
Bluebird Ballroom 2F

Standards + Specifications

Audience Experience Level Intermediate

6:00pm MDT

Attendee Reception

Wednesday June 25, 2025 6:00pm - 9:00pm MDT

TBA

More info to come!

Wednesday June 25, 2025 6:00pm - 9:00pm MDT
TBA

Special Events / Exhibits / Breaks

8:00am MDT

Registration & Badge Pick-Up

Thursday June 26, 2025 8:00am - 5:00pm MDT

Bluebird Ballroom Foyer (Level 1 - Terrace Level)

Thursday June 26, 2025 8:00am - 5:00pm MDT
Bluebird Ballroom Foyer (Level 1 - Terrace Level)

Special Events / Exhibits / Breaks

8:30am MDT

Coat & Bag Check

Thursday June 26, 2025 8:30am - 5:30pm MDT

Bluebird Ballroom 2G

Thursday June 26, 2025 8:30am - 5:30pm MDT
Bluebird Ballroom 2G

Special Events / Exhibits / Breaks

9:00am MDT

Open Mobile Hub Mini Summit [Additional Fee; Pre-Registration Required]

Thursday June 26, 2025 9:00am - 12:30pm MDT

Colorado Convention Center

Registration Cost: $5

This mini-summit provides a space for Open Mobile Hub community members and new participants to discuss the ongoing development of existing features and explore proposals for potential future enhancements.

How to Register: Pre-registration is required. To register for Open Mobile Hub Mini Summit, add it to your Open Source Summit North America registration.

Thursday June 26, 2025 9:00am - 12:30pm MDT
Colorado Convention Center 700 14th St, Denver, CO 80202

Project Mini-Summits

9:00am MDT

OpenAPI Education Mini Summit [Additional Fee; Pre-Registration Required]

Thursday June 26, 2025 9:00am - 12:30pm MDT

Colorado Convention Center

Registration Cost: $10

OpenAPI has become essential for the design, documentation, and seamless integration of APIs, providing a standardized description language that enhances collaboration. The mini summit will offer courses that cover the core principles and practical use of OpenAPI, empowering you to explore, create, and integrate OpenAPI descriptions confidently in your design, development, management, and governance workflows.

How to Register: Pre-registration is required. To register for OpenAPI Education Mini Summit, add it to your Open Source Summit North America registration.

Thursday June 26, 2025 9:00am - 12:30pm MDT
Colorado Convention Center 700 14th St, Denver, CO 80202

Project Mini-Summits

9:00am MDT

OpenChain Standards Development Mini Summit [Additional Fee; Pre-Registration Required]

Thursday June 26, 2025 9:00am - 12:30pm MDT

Colorado Convention Center

Registration Cost: $5

This mini-summit will be a space for OpenChain community members and new participants to discuss the future development of our existing standards (ISO/IEC 5230 for license compliance and ISO/IEC 18974 for security assurance), and to explore proposals for future standards we may develop.

How to Register: Pre-registration is required. To register for OpenChain Standards Development Mini Summit, add it to your Open Source Summit North America registration.

Thursday June 26, 2025 9:00am - 12:30pm MDT
Colorado Convention Center 700 14th St, Denver, CO 80202

Project Mini-Summits

9:00am MDT

Sylva Mini Summit [Additional Fee; Pre-Registration Required]

Thursday June 26, 2025 9:00am - 12:30pm MDT

Colorado Convention Center

Registration Cost: $10

Sylva Mini Summit North America will be co-located with this year’s Open Source Summit North America. It presents an exciting opportunity for telco professionals and technologists from various industries who want to know how Sylva can help their industry! This event will feature discussions and sessions to explore new technologies and trends in the telecom sector. It is crafted to foster collaboration and learning within the Sylva community, which is committed to influencing the future of telecom and driving forward the vision of a unified, efficient, and innovative Telco Cloud & Edge.

How to Register: Pre-registration is required. To register for Sylva Mini Summit North America, add it to your Open Source Summit North America registration.

Thursday June 26, 2025 9:00am - 12:30pm MDT
Colorado Convention Center 700 14th St, Denver, CO 80202

Project Mini-Summits

9:00am MDT

Yocto Project 15th Birthday Bash: A Journey Through Community & Code [Additional Fee; Pre-Registration Required]

Thursday June 26, 2025 9:00am - 12:30pm MDT

Colorado Convention Center

Registration Cost: $40

Join us for a celebration of the Yocto Project’s 15th anniversary! This mini summit will feature technical talks, a photo slideshow highlighting milestones (and fun memories!) , and a special cake-cutting ceremony. Connect with fellow Yocto Project and OE enthusiasts as we honor the past, explore the future, and celebrate the vibrant community that has made Yocto Project’s journey unforgettable.

How to Register: Pre-registration is required. To register for the Yocto Project Mini Summit, add it to your Open Source Summit North America registration.

Thursday June 26, 2025 9:00am - 12:30pm MDT
Colorado Convention Center 700 14th St, Denver, CO 80202

Project Mini-Summits

9:00am MDT

OTel Community Day [Additional Fee; Pre-Registration Required]

Thursday June 26, 2025 9:00am - 5:00pm MDT

Colorado Convention Center

Registration Cost: Early: $199 / Standard: $249 / Late: $399

OpenTelemetry Community Day is a time and a place for maintainers, contributors, and users of OpenTelemetry to come together and celebrate both our open source work and our successes with Observability.

To learn more, visit the event website.

How to Register: Pre-registration is required. To register for OTel Community Day, add it to your Open Source Summit North America registration.

Thursday June 26, 2025 9:00am - 5:00pm MDT
Colorado Convention Center 700 14th St, Denver, CO 80202

Co-Located Events

9:00am MDT

OpenSSF Community Day North America [Additional Fee; Pre-Registration Required]

Thursday June 26, 2025 9:00am - 5:45pm MDT

Colorado Convention Center

Registration Cost: $25

OpenSSF Community Days bring together a vibrant community from across the Security and Open Source ecosystems to share ideas and progress on capabilities that make it easier to sustainably secure the development, maintenance, and consumption of the software on which we all depend. These events, held regionally and co-located with KubeCon or Open Source Summits, offer an opportunity to engage with the brightest minds in security for a day of collaboration and innovation in software security best practices. As a home for tools, standards, and education, OpenSSF provides attendees the chance to explore these resources, share their experiences, and contribute to a safer and more secure digital world.

To learn more, visit the event website.

How to Register: Pre-registration is required. To register for OpenSSF Community Day North America, add it to your Open Source Summit North America registration.

Thursday June 26, 2025 9:00am - 5:45pm MDT
Colorado Convention Center 700 14th St, Denver, CO 80202

Co-Located Events

9:00am MDT

Linux Security Summit North America [Additional Fee; Pre-Registration Required]

Thursday June 26, 2025 9:00am - Friday June 27, 2025 5:00pm MDT

Colorado Convention Center

Registration Cost: Early: $249 | Standard: $299 | Late: $399

Linux Security Summit (LSS) is a technical forum for collaboration between Linux developers, researchers, and end users with the primary aim of fostering community efforts to analyze and solve Linux security challenges.
LSS is where key Linux security community members and maintainers gather to present their work and discuss research with peers, joined by those who wish to keep up with the latest in Linux security development and who would like to provide input to the development process.

To learn more, visit the event website.

How to Register: Pre-registration is required. To register for Linux Security Summit North America, add it to your Open Source Summit North America registration.

Thursday June 26, 2025 9:00am - Friday June 27, 2025 5:00pm MDT
Colorado Convention Center 700 14th St, Denver, CO 80202

Co-Located Events

1:30pm MDT

CHAOSScon [Additional Fee; Pre-Registration Required]

Thursday June 26, 2025 1:30pm - 5:00pm MDT

Colorado Convention Center

Registration Cost: $10

CHAOSS is a Linux Foundation project focused on creating metrics, metrics models, and software to better understand open source community health on a global scale. CHAOSS is an acronym for Community Health Analytics in Open Source Software. Open source software is critically important for both individuals and organizations. This importance raises questions about how we understand the health of the open-source projects we rely on. Unhealthy projects can have negative impacts on the community involved in the project as well as organizations that rely on such projects.

At CHAOSScon, you will learn about open source project health metrics and tools used by open source projects, communities, engineering teams, OSPOs, Universities, and scientific / research software to track and analyze their open source work. This mini-conference will provide a venue for discussing open source project health, CHAOSS updates, use cases, and hands-on activities for developers, community managers, project managers, and anyone interested in measuring open source project health. We will also share insights about the activities happening across the CHAOSS project.

How to Register: Pre-registration is required. To register for CHAOSSCon, add it to your Open Source Summit North America registration.

Thursday June 26, 2025 1:30pm - 5:00pm MDT
Colorado Convention Center 700 14th St, Denver, CO 80202

Project Mini-Summits

1:30pm MDT

Confidential Computing Mini Summit [Additional Fee; Pre-Registration Required]

Thursday June 26, 2025 1:30pm - 5:00pm MDT

Colorado Convention Center

Registration Cost: $5

Securing data in use and accelerating the adoption of confidential computing through open collaboration.

How to Register: Pre-registration is required. To register for the Confidential Computing Mini Summit, add it to your Open Source Summit North America registration.

Thursday June 26, 2025 1:30pm - 5:00pm MDT
Colorado Convention Center 700 14th St, Denver, CO 80202

Project Mini-Summits

1:30pm MDT

LF AI & Data Mini Summit [Additional Fee; Pre-Registration Required]

Thursday June 26, 2025 1:30pm - 5:00pm MDT

Colorado Convention Center

Registration Cost: $10

Join us at the LF AI & Data Mini Summit to explore the latest advancements in open-source AI and data technologies. This event will feature expert-led sessions, project showcases, and collaborative discussions on key topics like generative AI, data governance, and interoperability. Don’t miss this opportunity to connect with the community driving innovation in AI and data.

How to Register: Pre-registration is required. To register for the LF AI & Data Mini Summit, add it to your Open Source Summit North America registration.

Thursday June 26, 2025 1:30pm - 5:00pm MDT
Colorado Convention Center 700 14th St, Denver, CO 80202

Project Mini-Summits

1:30pm MDT

Open Travel Foundation Kickoff Meeting [Pre-Registration Required]

Thursday June 26, 2025 1:30pm - 5:00pm MDT

Colorado Convention Center

Registration Cost: $0, but pre-registration is required

The travel retail industry is evolving to focus on delivering comprehensive experiences rather than just individual services. This shift necessitates enhanced interoperability among travel providers and retailers. Current protocols, rooted in standards from the 1960s, are outdated and insufficient for modern needs. The industry requires a new approach to handle travel offers as digital retail products. Addressing these challenges can unlock significant economic opportunities by automating travel arrangements and providing access to previously excluded suppliers. Following the success of employing open-source practices in solving similar issues, the LF Open Travel Foundation is being formed.

How to Register: Pre-registration is required. To register for the Open Travel Foundation Kickoff Meeting, add it to your Open Source Summit North America registration.

Thursday June 26, 2025 1:30pm - 5:00pm MDT
Colorado Convention Center 700 14th St, Denver, CO 80202

Project Mini-Summits

1:30pm MDT

Unified Acceleration (UXL) Foundation Mini Summit [Additional Fee; Pre-Registration Required]

Thursday June 26, 2025 1:30pm - 5:00pm MDT

Colorado Convention Center

Registration Cost: $5

The Unified Acceleration (UXL) Foundation governs a set of C++ projects that can be used to accelerate a range of use cases, from math operations like SPARSE and BLAS, through to AI operations on CPUs, GPUs and other processors. Join this summit to find out how you can take advantage of the UXL Foundation libraries, and how you can get involved in both shaping the projects as well as making meaningful contributions.

AGENDA:

Welcome Address (30 min)
How the UXL Foundation Projects are Powering AI (30 min)
Getting Started: Using & Contributing (30 min)
Developing Stable Open Source Releases (30 min)
High Performance for oneAPI Libraries (30 min)
UXL Foundation Roadmap (30 min)
Community Session (30 min)

How to Register: Pre-registration is required. To register for Unified Acceleration (UXL) Foundation Mini Summit, add it to your Open Source Summit North America registration.

Thursday June 26, 2025 1:30pm - 5:00pm MDT
Colorado Convention Center 700 14th St, Denver, CO 80202

Project Mini-Summits