Open Source SecurityCon NA 2025

Videos (35)

• 

  1 — Open Source SecurityCon | Welcome + Opening Remarks - John Kjell & Marina Moore
• 

  2 — Sponsored Keynote: Breaking Up with Long-lived Secrets: Secure Automation in the Mode... Billy Lynch
• 

  3 — Trust, Track, and Verify: Securing AI Pipelines End-to-End - Adolfo Garcia & Jun (Victor) Lu
• 

  4 — Sponsored Keynote: The Long Arc of Digital Rights: Securing our Open Source Future - Emily Fox
• 

  5 — Spice Check: Building an E2E SLSA Implementation - Adolfo García Veytia, Carabiner Systems
• 

  6 — Achieving Positive Outcomes Across Ecosystems: Security Audits in Action - Amir Montazery
• 

  7 — How Secure Is Academic Open Source? Insights From the UC OSPO Network - Juanita Gomez
• 

  8 — Dirty Dancing - Untrustworthy SLSA Build Provenance - John Kjell, ControlPlane
• 

  9 — Panel: Balancing Developer Fre... Adrian Mouat, Cat Morris, Gaurav Saxena, Marcus Eagan & Alex Zenla
• 

  10 — We're All Consumers (And That's Dandy) - Evan Anderson, Custcodian LLC
• 

  11 — From Adoption to Innovation: LinkedIn’s SPIRE Journey - Junyuan Zeng & Wei Zhang, LinkedIn
• 

  12 — Panel: Turn Down That Noise: Why the OpenSSF Security Baseline Is Good for Maintainers
• 

  13 — Driving Policy To Secure the Open Source Ecosystem - Jack Cable, Corridor
• 

  14 — It's Not a Best Practice If No One Can Follow It: Learning From... Alex Zenla, Edera & John Morello
• 

  15 — OSCAL in Action: Real World Examples of Automating Policy & Comp... Jennifer Power & Hannah Braswell
• 

  16 — SAFE-MCP: A Security Framework for AI+MCP (Model Context Protocol) - Frederick Kautz, TestifySec
• 

  17 — Securing Cloud-Native Workloads from the Metal Up - Tyler Schade, GEICO
• 

  18 — What Doesn’t Kill You Makes You Stronger: The Vulnerabilities Th... Dor Serero & Michael Katchinskiy
• 

  19 — Lightning Talk: Moving Academia Toward Practice Through Accreditation - Justin Cappos
• 

  20 — Lightning Talk: AIxCC Results and New Open Source AI Projects To Help Secure Open Sou... Jeff Diecks
• 

  21 — The Whole Is Greater Than the Sum of Its Parts: A Case for Inte... Hayden Blauzvern & Marcela Melara
• 

  22 — Applying DevSecOps Lessons To MLSecOps - Sarah Evans, Dell Technologies
• 

  23 — The State of Git Security With SLSA and Gittuf - Patrick Zielinski & Aditya Sirish A Yelgundhalli
• 

  24 — Threat Modeling for Kubernetes: Enhancing Security Posture in Complex and Regulat... Maxime Coquerel
• 

  25 — You Can Sign It, But Can You Trust It? Securing the Compilation Process - Yaxuan(Alice) Wen
• 

  26 — Who Let the Agents Out? Securing AI Workflows the Right Way - Mariusz Sabath & Maia Iyer
• 

  27 — Lightning Talk: Federate, Scale, and Secure: Practical SPIFFE/SPIRE for Containers... Anjali Telang
• 

  28 — Sponsored Keynote: Rethinking the Software Supply Chain: Trust, Minimalism, and Resili... M. Donovan
• 

  29 — Panel: In AI We Trust? Securing the Future, One Agent at a Time
• 

  30 — Multi-messenger Security: Adaptive Kubernetes SOC... Constanze Roedig, Ben Hirschberg & Dom Delnano
• 

  31 — OSPS Baseline: Improving Your Project Security the Easy Way - Ben Cotton, Kusari
• 

  32 — Transparency Exchange API: Where To Find Product SBOM? - Pavel Shukhman, Reliza
• 

  33 — Lightning Talk: Where Should Source Attestations Live? Exploring Storage Strategies - Billy Lynch
• 

  34 — Lightning Talk: Baking a Security Community From Scratch - Helen Woeste
• 

  35 — Open Source SecurityCon | Closing Remarks - John Kjell & Marina Moore, Program Committee Co-Chairs