RSA Conference 2017 starts in a couple of days, and I'm very excited to be attending this year. Cybersecurity has been top of mind for me over the past year or so, and I'm looking forward to discovering new technology and hearing security leaders and pioneers speak in San Francisco at the Moscone Center. Although I'll spend time in booth #S332 with my team (handing out ducks, getting surveys completed and giving some fun t-shirts away), I'm even more excited that I'll be attending with a full conference pass so I can expand my education by attending some great sessions.
RSA Conference 2017 Agenda
The agenda for RSA is jam packed, starting with trainings and tutorials on Sunday, February 12. I don't fly in until Monday, and I'm really torn about which seminar to attend - "Most Innovative Startup" Live sounds too fascinating to pass up, but as a parent, I want to see the RSAC CyberSmart Parents Education Workshop: "The Always-On Generation and the Evolving Digital Landscape." And how can I pass on the Securing Diversity: Women in Cybersecurity session? I'm hoping to divide and conquer these top of mind topics with my team so I don't miss anything.
At Black Duck, open source software is top of mind, but with that focus comes the need to pay attention to applications and application security, DevOps, containers and so much more. I'm working with my team on crafting the next Future of Open Source Survey and excited to use this opportunity to spend time with the security community to focus our questions going forward.
Share Security & Open Source Insight
We'll be doing quick surveys in our booth (#S332) and your participation is key to providing insight into concerns for attendees at RSA Conference 2017. Last year we shared results for questions about top security and open source concerns, and I'm curious to see how or if they've changed since last year. Plus, we're giving away this really cool t-shirt!
If you have concerns about open source security or licenses in your applications, reserve a time to meet with our experts on-site. You'll also receive a pair of custom Black Duck socks during the meeting (which are awesome). Email us today to reserve your slot.
Cybersecurity and Open Source
On Tuesday my morning is filled with keynotes, from Planning for Chaos with Dr. Zulfikar Ramzan, Chief Technology Officer at RSA to CyberSafe Parents with Ayla and Jace Herzog Barceló of Hacker Highschool discussing what teens really do online. My afternoon is filled with more targeted sessions, including Final Boarding for DevOps! You Don’t Have to Go Home, but..., Saving CVE with OpenSource and Managing Your Open Source. Last year we saw a record number of CVEs, with a pretty big discrepancy between the numbers reported by NVD and VulnDB. Learning more about the process of creating CVEs and how to get involved with the Distributed Weakness Filing (DWF) Project will help me understand my company's business better, and I'm delighted that open source plays a role in this important project.
Wednesday at RSA promises more excellent sessions. I'm enrolled in Collaborative Security: Securing Open Source Software with Nicko van Someren, Chief Technology Officer at The Linux Foundation. This session promises new tools and techniques to improve the security and quality of open source projects, which our goal at Black Duck Software as well - and why we created the Center for Open Source Research and Innovation (COSRI). I know we have innovative research and reports coming out soon from our team. Wonder if there will be any overlap with the content in this session?
On Wednesday evening, don't miss the Pub Crawl in the expo hall on Wednesday, February 15th from 5:00 pm - 6:00 pm - and visit our booth #S332 for exclusive Black Duck pub crawl swag. We'll also be giving away ducks - take a photo, tag @black_duck_sw and you could win a $250 Amazon gift card. Plus, frankly, we love the duck photos we get from all over the world, and we'd love to see yours too.
Applications Are the #1 Target of Cybersecurity Attacks
Because open source components are the foundation today’s applications, known open source vulnerabilities represent significant risk. Black Duck can help identify the open source components and vulnerabilities in your code, enabling you to maximize the benefits of open source and minimize risks. Visit Black Duck in booth #S332 at RSA Conference 2017 to learn more.
Don't be a vuln victim. Find and fix open source vulnerabilities with Black Duck.