Embedded Insiders Podcast: Let's Settle This. What's More Secure, Proprietary or Open Source?

June 26, 2020

This week on the Embedded Insiders, Brandon and Rich discuss an age-old controversy: What's more secure? Proprietary or open-source software?

This week on the Embedded Insiders, Brandon and Rich discuss an age-old controversy: What’s more secure? Proprietary or open-source software?

That discussion leads into an interview with Kate Stewart, Senior Director of Strategic Programs at the Linux Foundation, who joins the program to explain how the Zephyr Project responded to 25 vulnerabilities recently uncovered in its open-source code base by the NCC Group, an independent security analysis firm. 

After reassuring the Insiders by detailing the steps taken to remedy those bugs and explaining the security practices in place at the Zephyr Project, Stewart continues to introduce the Embedded Linux in Safety Applications, or ELISA, project, which seeks to better align Linux software and tools with the requirements of safety-critical industries. Where does ELISA fit in with other projects like RTLinux, and how can the software test community help accelerate the expansion of Linux into platforms ranging from road vehicles to rockets?

Tune in below.

 

For more information on the Zephyr vulnerabilities, read “Another IoT Security "Uh-Oh": 26 Flaws in Open-Source Zephyr and MCUboot Stacks” on www.embedded-computing.com.

To learn more about the ELISA Project and updates to the Zephyr Project, attend one of Kate Stewarts presentations during the Linux Foundation’s Open Source Summit North America, a virtual event taking place from June 29th to July 2nd. For more information or to register, visit https://ossna2020.sched.com/event/c3ZE.

Featured Companies

The Linux Foundation

1 Letterman Drive
San Francisco, CA 94129

Perry Cohen, associate editor for Embedded Computing Design, is responsible for web content editing and creation in addition to podcast production. He also assists with the publication?s social media efforts which include strategic posting, follower engagement, and social media analysis. Before joining the ECD editorial team, Perry has been published on both local and national news platforms including KTAR.com (Phoenix), ArizonaSports.com (Phoenix), AZFamily.com, Cronkite News, and MLB/MiLB among others. Perry received a BA in Journalism from the Walter Cronkite School of Journalism and Mass Communications at Arizona State university. He can be reached by email at [email protected]. Follow Perry?s work and ECD content on his twitter account @pcohen21.

More from Perry