Embedded Insiders Podcast: Let's Settle This. What's More Secure, Proprietary or Open Source?

June 26, 2020 Brandon Lewis

This week on the Embedded Insiders, Brandon and Rich discuss an age-old controversy: What’s more secure? Proprietary or open-source software?

That discussion leads into an interview with Kate Stewart, Senior Director of Strategic Programs at the Linux Foundation, who joins the program to explain how the Zephyr Project responded to 25 vulnerabilities recently uncovered in its open-source code base by the NCC Group, an independent security analysis firm. 

After reassuring the Insiders by detailing the steps taken to remedy those bugs and explaining the security practices in place at the Zephyr Project, Stewart continues to introduce the Embedded Linux in Safety Applications, or ELISA, project, which seeks to better align Linux software and tools with the requirements of safety-critical industries. Where does ELISA fit in with other projects like RTLinux, and how can the software test community help accelerate the expansion of Linux into platforms ranging from road vehicles to rockets?

Tune in below.

 


For more information on the Zephyr vulnerabilities, read “Another IoT Security "Uh-Oh": 26 Flaws in Open-Source Zephyr and MCUboot Stacks” on www.embedded-computing.com.

To learn more about the ELISA Project and updates to the Zephyr Project, attend one of Kate Stewarts presentations during the Linux Foundation’s Open Source Summit North America, a virtual event taking place from June 29th to July 2nd. For more information or to register, visit https://ossna2020.sched.com/event/c3ZE.

About the Author

Brandon Lewis

Brandon Lewis, Editor-in-Chief of Embedded Computing Design, is responsible for guiding the property's content strategy, editorial direction, and engineering community engagement, which includes IoT Design, Automotive Embedded Systems, the Power Page, Industrial AI & Machine Learning, and other publications. As an experienced technical journalist, editor, and reporter with an aptitude for identifying key technologies, products, and market trends in the embedded technology sector, he enjoys covering topics that range from development kits and tools to cyber security and technology business models. Brandon received a BA in English Literature from Arizona State University, where he graduated cum laude. He can be reached by email at brandon.lewis@opensysmedia.com.

Follow on Twitter Follow on Linkedin Visit Website More Content by Brandon Lewis
Previous Article
Extreme Hygienic Control HMI PC for Food/Pharmaceutical/Healthcare Applications After Pandemic
Extreme Hygienic Control HMI PC for Food/Pharmaceutical/Healthcare Applications After Pandemic

Highly regulated industries like healthcare, industrial automation, and transportation demand that most ele...

Next Article
Dev Kit Weekly: T.I. SimpleLink Multi-Band CC1352R Wireless MCU Launchpad SensorTag Kit
Dev Kit Weekly: T.I. SimpleLink Multi-Band CC1352R Wireless MCU Launchpad SensorTag Kit

The dual-band, multi-protocol CC1352R SimpleLink wireless MCU that supports both 2.4 GHz technologies like ...