Open Source Summit Japan (Tokyo, Japan)

The Open Source Summit Japan, is the premier event for open source developers, technologists, and community leaders to collaborate, share information, solve problems and gain knowledge, furthering open source innovation and ensuring a sustainable open source ecosystem. takes place October 28-29 in Tokyo, Japan. 

Monday October 28th at 11:15 JST

Safe Systems with Linux – Philipp Ahmann, Sr. OSS Community Manager Etas GmbH (BOSCH) & Kate Stewart, VP Dependable Embedded Systems The Linux Foundation

As Linux is increasingly deployed in systems with varying criticality constraints, distro providers are expected to ensure that security fixes in their offerings do not introduce regressions for customer products that have safety considerations. The key question arises: How can they establish consistent linkage between code, tests, and the requirements that the code satisfies? And which open source tools and specifically for Linux exist to support traceability in order to comply with standards such as ASPICE, ISO26262 or ISO21434? This talk addresses critical challenges in requirements tracking, documentation, testing, and artifact sharing within the Linux kernel ecosystem. Functionality has historically been added to the kernel with requirements explained in the email justifications for adding, but not formalized as “requirements” in the kernel documentation. While tests are contributed for the code, the underlying requirement that the tests satisfies is likewise not documented in a consistent manner. This and further topics will be discussed. Additionally, the results from the “Safe Systems with Linux” micro conference at Linux plumbers will be summarized.

Tuesday October 29, 2024 14:00 JST

Lessons Learned on Following Security Best Practices in Zephyr – Kate Stewart,  VP Dependable Emb0edded Systems  The Linux Foundation

Launched in 2016, the Zephyr project aimed to address the lack of standardized security practices in the IoT market by applying best practices to an open-source framework. This talk will detail Zephyr’s journey over the past 8 years, including becoming a CVE Numbering Authority and forming a PSIRT team, to demonstrate that open-source projects can successfully implement security best practices.

Tuesday October 29, 2024 16:40 JST

From Complexity to Clarity: Addressing Challenges in AI BOMs for Compliance – Gopi Krishnan Rajbahadur, Senior Staff Researcher Huawei Technologies Canada & Kate Stewart, VP Dependable Embedded Systems The Linux Foundation

As global regulations on AI software tighten, the AI Software Bill of Materials (AI BOM) and the new SPDX 3.0 with AI and dataset profiles offer a promising solution for compliance but face slow adoption due to developer knowledge gaps and the complexity of AI systems. This talk will address these challenges, share best practices for improving AI BOM accuracy, and provide strategies to help professionals ensure their AI applications meet regulatory requirements.

How to attend: https://events.linuxfoundation.org/open-source-summit-japan/register/

To see more information: https://events.linuxfoundation.org/open-source-summit-japan/program/schedule/