Open FinTech Forum - Linux Foundation - NYC 12/09/2019
Linux Foundation
Security - Let’s Encrypt
Networking - ONAP (open national automation platform), Open Daylight
Cloud - CNCF Cloud Foundry, Cloud information model
Automotive - Automotive Rade linux
Blockchain - hyperledger
Edge/embedded - zephyr, yocto, edge foundry
Web - Nodejs, OpenJS foundation
Film making softwares - OpenVDB, OpenColorIO
Unlock Open Source Technology’s Full Value - Forrester report
Ant Financial (powers Alibaba pay)
Air Force F18s runs K8s
Gitlab - The Multicloud Maturity Model - Sid Sijbrandij, Gitlab CEO (@sytses)
Why multicloud
functional differences
leverage in negotiations
acquistions where products are built on cloud
customers competing with a specific cloud
tough security and compliance regulations
Levels of multicloud adoption
monocloud
no portability: cloud dependent devops process
workflow porability: cloud independent devops process
application portability: apps can run on any cloud
DR portability: apps can failover to another cloud - gitlab geo?
workload portability: apps shift workload b/w multiple clouds dynamically
data portability: data changes can happen in multiple clouds (hardest) - Cockroach db does this
Goldman Sachs - PURE - a logical modeling language and “Alloy”. Will be available in a FINOS Gitlab repo under an Apache 2.0 open source license mid-2020
Robin.io -
Oracle - A new blueprint for a modern app dev and runtime env
High perf Microservices - Helidon with GraalVM - microprofile solution - better start up time (0.02 secs) than Dropwizard, Quarkus, SpringBoot
Quarkus
Hyperledger & CensenSys - Blockchain balance
Besu - Java based Ethereum client
ConsenSys - public blockchain
Kmow your supplier - Chainyard and IBM to reimagine supplier procurement
libra association - payment permissioned blockchain
Santander settles both sides of a $20M bond trade on public Ethereum
Lacchain - public permissioned chain
Offchain storage - decideing on what really need to be stored on the ledger. Offchain storage allows you to use the benefts of blockchain while protecting PII
Trusted Execution Environments - hyperledger avalon, enterprise ethereum alliance, oasis labs
HSM - h/w security module?
Zero knowledge systems: Zcash, Hyperledger Indy, aztec (protocol)
super cookie problem?
CI/CD AI/MK
Dev tools: Kite/Codota
Test: predict outcome, trend analysis.
Builds: trending B.O.M. testing
Statistical analysis of deployment pipelines. Analytics on CM/RM, predictive analytics on defects
NLG - Natural language generation tools.
https://s-case.github.io
pix2code: Teaching machines to use
Image to web/mobile gui generation: http://uiwizard.io
Blockchain - Is it the right technology for my business? Slides
Consensys: app layer on Ethereum blockchain
Infura, Besu, Kaleido, MythX, Truffle, Metamask
Learnings - http://learn.consensys.net
Public Ethereum has scalability, privacy and permissioning problems which is solved by private Ethereum
NASDAQ uses blockchain in production - settlements
Properties to assess before using blockchain for your business use-cases:
secure, peer-to-peer, traceable, immutable, auditable
Properties to assess before using blockchain for your business requirements:
legal, governance, user, trustless
Sysdig, Falco
Thread Modelling to secure a cluster - Controlplane
@subliminio, @controlplane
Kubesim
Representing a threat model - annotate the architecture diagram
Kubernetes is not SOC-friendly
https://github.com/cncf/financial-user-group
what is a blue or red team? Red team simulates attack and blue team defends. https://securitytrails.com/blog/cybersecurity-red-blue-team
https://github.com/kubernetes-simulator/simulator
Become a data-driven organization through Unified Metadata
https://github.com/ODPi/egeria
Design thinking
Tetrate - Service Mesh to Production with your cloud native
https://tetrate.io
Multicloud, DevSecOps, Microservices
Service Meshes: Istio from Google, Linkerd
Proxy: Envoy (written in C++, extremely performant)
what is mTLS?
What is Citadel? Certificate authority/management
SPIFFE X.509 SVID
Best practices
Assess your existing systems and process