SAN19-SWG09 - CVE, CNA, Mitre (Sunset 1)

Session Abstract

  • The Zephyr project has become a CNA, which makes it the authority for allocating and managing CVEs for the project
  • Information about the process, etc.
Considerations of becoming a CVE for OP-TEE, and/or TF-(A/M). Should Linaro, or trustedfirmware.org do this?

Session Speakers

David Brown

Senior Engineer (Linaro)

David Brown is a member of the Linaro Security Working Group, and has worked on the Linux kernel, with a focus on security for a number of years. Recently, he has been focusing on security as it relates to IoT and embedded devices, including focusing on secure booting, and secure network communications. He is currently the Security Architect for the Zephyr Project.

comments powered by Disqus

Recent Posts

Other Posts

Sign up. Receive Updates. Stay informed.

Sign up to our mailing list to receive updates on the latest Linaro Connect news!