June 21-24, 2022
Austin, Texas, USA + Virtual
View More Details & Registration
Note: The schedule is subject to change.

The Sched app allows you to build your schedule but is not a substitute for your event registration. You must be registered for Open Source Summit North America 2022 to participate in the sessions. If you have not registered but would like to join us, please go to the event registration page to purchase a registration.

This schedule is automatically displayed in Central Daylight Time (UTC -5). To see the schedule in your preferred timezone, please select from the drop-down menu to the right, above "Filter by Date."

IMPORTANT NOTE: Timing of sessions and room locations are subject to change.

Wednesday, June 22 • 4:35pm - 5:15pm
Keylime: Bootstrap and Maintain Trust on the Edge, Cloud, and IoT - Lily Sturmann & Michael Peters, Red Hat

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Feedback form is now closed.
Security is an ever-greater concern, while more critical workloads are running in the cloud than ever before. This raises questions: Is it possible to verify that only approved software is running on servers? To ensure a cloud node is booted with the right kernel options? To prevent tampering of virtual machines on a public cloud? And is it possible to do all of this remotely and at scale, using open source solutions? Yes: Keylime is a CNCF sandbox project encompassing all of these goals. Leveraging two foundational security technologies, hardware Trusted Platform Modules (TPMs) and the Linux Integrity Measurement Architecture (IMA), Keylime has the capability to act as the bridge between these technologies and real-world deployments both large and small, offering remote attestation of both a machine's boot state and software running after boot. This session will cover how Keylime brings together TPMs and IMA, adds continuous remote attestation, and enables configurable automatic revocation actions after a compromise. The session will also discuss how to leverage Keylime with Kubernetes deployments, and Keylime's shift to Rust for a smaller footprint that works in more diverse environments. Find out how Keylime provides a compelling security story for Cloud and Edge.

avatar for Michael Peters

Michael Peters

Principal Engineer, Red Hat
Michael Peters is a Principal Engineer in Emerging Technologies in Red Hat's Office of the CTO. He is a senior systems engineer and programmer with an emphasis on DevOps, Security, and Operability and is one of the current maintainers of the Keylime project. His experience in both... Read More →

Lily Sturmann

Senior Software Engineer, Red Hat
Lily is a senior software engineer at Red Hat in the Office of the CTO in Emerging Technologies. She has primarily worked on security projects related to remote attestation and confidential computing, and more recently on securing the software supply chain. She has spoken at numerous... Read More →

Wednesday June 22, 2022 4:35pm - 5:15pm CDT
Lone Star F (Level 3)
  LinuxCon, Security