Yocto Project Summit 2023.11

Yocto Project Security: Now and the Future
2023-11-30 , Nanbield

What has happened around security in the Yocto Project in 2023? What is cooking for 2024? If you're using YP in your products, you will be interested to learn about new options and features. Marta will discuss changes in the CVE scanning process, SBOM generation with SPDX, default options, and more.


This talk is designed for people already familiar with the Yocto Projects who would like to have an update on the new and shiny features. And new ideas.

See also: Talk slides v2 (737.6 KB)

Marta Rybczynska has a network security background and 20 years of experience in Open Source, including 15 years in embedded development. She has been working with embedded operating systems like Linux and various real-time ones, system libraries, and frameworks up to user interfaces. Her specialties are architecture-specific parts of the Linux kernel. In the past, Marta served as Vice-President and treasurer for KDE e.V. She has been involved in various Open Source projects and contributed kernel-related guest articles for LWN.net. In 2021, she founded Syslinbit, an Open Source consulting company. She has experience with presentations at scientific and free software conferences, including LinuxCon, Open Source Summit, Embedded Linux Conference, Akademy, FOSDEM, and FOSS-north.

This speaker also appears in: