Earlier this month, thousands of attendees participated in Open Source Summit Japan to learn best practices, celebrate technology, discuss what’s next and network with each other. Kate Stewart, Vice President of Dependable Embedded Systems at the Linux Foundation, was on-site to present “Zephyr Project: Results from Applying Open Source and Security Best Practices.”
When the Zephyr Project was launched in 2016, it was just one in a crowded set of open source RTOS solutions available. Since then, it’s become one of the most active real time operating system being used for resource constrained devices with a vibrant and growing developer community. A lot of the lessons learned from the Linux kernel development were applied, but the project chose deliberately to do some things different and adopt some of the security best practices . Zephyr is one of the few open source projects that has a PSIRT team and is an actual CVE numbering authority (CNA). Zephyr has also engaged with a safety certification authority, and is working towards 61508 certification in 2024. This video reviews the practices that the Zephyr community has adopted, and what has been working and other lessons learned.
Watch the video below:
Check out the PPT: Kate Stewart’s Zephyr OSS Japan Presentation
All videos from Open Source Summit Japan can be found here.