How to Handle Security Flaws in a Storage Product Using Open Source Code

Author(s)/Presenter(s):

Jeremy Allison, Samba Team/Google

Library Content Type:

Presentation

Publish Date:

Thursday, September 27, 2018

Event Name:

SDC 2018

Focus Areas:

Data Governance & Security

Abstract:

Almost all storage software now includes some Open Source code. Managing security in Open Source code can have unique challenges.

Samba is an Open Source project that has had many security flaws over the years. We’ve had to learn how to handle them, and the best practices needed in order to maintain trust in the project and Open Source in general. This presentation will cover how Samba has evolved in handling security issues, from initial response to working within the storage and security communities including the worlds largest software vendors.

Learning Objectives:
1. Security management from a Samba perspective
2. Open source integration
3. Secure coding techniques

Download PDF

Watch video: