February 24, 2020

209 words 1 min read

Privacy, Consent and Security Within Modern Applications

Privacy, Consent and Security Within Modern Applications

Rapid application innovation is characterized in part using shared code from open source components. While open source development offers many benefits, when regulators change the rules our strengths …
Talk Title Privacy, Consent and Security Within Modern Applications
Speakers Tim Mackey (Senior Technology Evangelist, Black Duck by Synopsys)
Conference Open Source Summit + ELC North America
Conf Tag
Location San Diego, CA, USA
Date Aug 19-23, 2019
URL Talk Page
Slides Talk Slides
Video

Rapid application innovation is characterized in part using shared code from open source components. While open source development offers many benefits, when regulators change the rules our strengths can prove problematic for ongoing regulatory compliance. For example, in January 2019 French regulators highlighted that the initial experience with Android violated consent and transparency provisions in GDPR imposing a hefty fine upon Google. Given privacy regulations like GDPR exist due to security issues within product offerings, it’s time to look at software development not just through a security lens but also through a consent and privacy one.In this session we’ll cover:- Security expectations regulators are creating for consumers- How to identify sensitive data as defined by regulators- The role and lifecycle of user consent in product operations- Models to identify data processing and third-party data transfers

android google code security gdpr open source privacy
comments powered by Disqus
Seven Hard Truths About Open Source Community

Seven Hard Truths About Open Source Community

February 21, 2020

In OSS, managing a project may not get easier as it gets more successful. We like to think that attracting lots of users means success, & success means spreading the workload. But sometimes managing a …
TFX: Production ML pipelines with TensorFlow

TFX: Production ML pipelines with TensorFlow

February 18, 2020

Putting together an ML production pipeline for training, deploying, and maintaining ML and deep learning applications is much more than just training a model. Robert Crowe and Pedram Pejman explore Google's TFX, an open source version of the tools and libraries that Google uses internally, made using its years of experience in developing production ML pipelines.
Data security and privacy anti-patterns

Data security and privacy anti-patterns

February 15, 2020

Anti-patterns are behaviors that take bad problems and lead to even worse solutions. In the world of data security and privacy, theyre everywhere. Over the past four years, data security and privacy anti-patterns have emerged across hundreds of customers and industry verticalsthere's been an obvious trend. Steven Touw details five anti-patterns and, more importantly, the solutions for them.
The 7 (Unhealthy) Habits of Highly Effective IoT Marketing

The 7 (Unhealthy) Habits of Highly Effective IoT Marketing

February 14, 2020

A myriad of connected electronic devices can now be monitored and controlled using a smart phone, or via voice commands. User-friendly interfaces are making smart products, aka Internet of Things (I …
It's Time to Jump on the Secure GitOps Bandwagon

It's Time to Jump on the Secure GitOps Bandwagon

February 12, 2020

In the last year, Kubernetes GitOps has become more pervasive in many organizations helping them enhance CI/CD by removing manual kubectl commands, improving source code control, and keeping release v …
Using TPMs to Cryptographically Verify Devices at Scale

Using TPMs to Cryptographically Verify Devices at Scale

February 5, 2020

Once a new device leaves IT and enters user hands, maintaining confidence in the security of the device is a challenge. When access to network resources relies on credentials provided by the device, r …