Why Microsoft is a good steward for GitHub
There seems to be a lot of hysteria going on in various communities that depend on GitHub for their project hosting around the Microsoft acquisition (just look in the comments here and here)....
View ArticleClik here to view.
Containers and Cloud Security
Introduction The idea behind this blog post is to take a new look at how cloud security is measured and what its impact is on the various actors in the cloud ecosystem. From the measurement point of...
View ArticleClik here to view.
A New Method of Containment: IBM Nabla Containers
In the previous post about Containers and Cloud Security, I noted that most of the tenants of a Cloud Service Provider (CSP) could safely not worry about the Horizontal Attack Profile (HAP) and leave...
View ArticleClik here to view.
Measuring the Horizontal Attack Profile of Nabla Containers
One of the biggest problems with the current debate about Container vs Hypervisor security is that no-one has actually developed a way of measuring security, so the debate is all in qualitative terms...
View ArticleUsing TPM Based Client Certificates on Firefox and Apache
One of the useful features of Apache (or indeed any competent web server) is the ability to use client side certificates. All this means is that a certificate from each end of the TLS transaction is...
View ArticleWebauthn in Linux with a TPM via the HID gadget
Account security on the modern web is a bit of a nightmare. Everyone understands the need for strong passwords which are different for each account, but managing them is problematic because the human...
View ArticleA Roadmap for Eliminating Patents in Open Source
The realm of Software Patents is often considered to be a fairly new field which isn’t really influenced by anything else that goes on in the legal lansdcape. In particular there’s a very old field of...
View ArticleThe Mythical Economic Model of Open Source
It has become fashionable today to study open source through the lens of economic benefits to developers and sometimes draw rather alarming conclusions. It has also become fashionable to assume a...
View ArticleRetro Engineering: Updating a Nexus One for the modern world
A few of you who’ve met me know that my current Android phone is an ancient Nexus One. I like it partly because of the small form factor, partly because I’ve re-engineered pieces of the CyanogneMod OS...
View ArticleWhy Ethical Open Source Really Isn’t
A lot of virtual ink has been expended debating the practicalities of the new push to adopt so called ethical open source licences. The two principle arguments being it’s not legally enforceable and...
View ArticleLessons from the GNOME Patent Troll Incident
First, for all the lawyers who are eager to see the Settlement Agreement, here it is. The reason I can do this is that I’ve released software under an OSI approved licence, so I’m covered by the...
View ArticleCreating a Home IPv6 Network
One of the recent experiences of Linux Plumbers Conference convinced me that if you want to be part of a true open source WebRTC based peer to peer audio/video interaction, you need an internet...
View ArticleBuilding Encrypted Images for Confidential Computing
With both Intel and AMD announcing confidential computing features to run encrypted virtual machines, IBM research has been looking into a new format for encrypted VM images. The first question is why...
View ArticleClik here to view.
Deploying Encrypted Images for Confidential Computing
In the previous post I looked at how you build an encrypted image that can maintain its confidentiality inside AMD SEV or Intel TDX. In this post I’ll discuss how you actually bring up a confidential...
View ArticlePapering Over our TPM 2.0 TSS Divisions
For years I’ve been hoping that the Trusted Computing Group (TCG) based IBM and Intel TSS (TCG Software Stack) would simply integrate with one another into a single package. The rationale is pretty...
View ArticleOwning Your Own Copyrights in Open Source
This article covers several aspects: owning the copyrights you develop outside of your employed time and the more thorny aspect of owning the copyrights in open source projects you work on for your...
View ArticleThe Community Corrosive Effects of CLAs
As one of the kernel DCO advocates, I’ve written many times about using the DCO instead of a CLA for copyright and patent contributions under open source licences. In spite of my obvious biases, I’ll...
View ArticleLinux Plumbers Conference Matrix and BBB integration
The recently completed Linux Plumbers Conference (LPC) 2021 used the Big Blue Button (BBB) project again as its audio/video online conferencing platform and Matrix for IM and chat. Why we chose BBB...
View Article--- Article Not Found! ---
*** *** *** RSSing Note: Article is missing! We don't know where we put it!!. *** ***
View ArticleUsing SIP to Replace Mobile and Land Lines
If you read more than a few articles in my blog you’ve probably figured out that I’m pretty much a public cloud Luddite: I run my own cloud (including my own email server) and don’t really have much...
View Article
