BayLISA June Meeting: Build FIPS into your storage products!
Details
Note: please fill out this simple form at least several hours in advance of attending the meeting to allow for smoother flow at the front door, which will include a pre-printed temporary badge for you.
Note(2): Please see the updated location this month. We will be meeting at Cisco's Building 8, located at 3750 Zanker Road, San Jose.
Abstract:
Selling to the US Government can require getting FIPS (Federal Information Processing Standards) certification.
Many storage products are based on Linux and Open Source code, which by themselves do not promise compliance with any standards. Sometimes the storage protocols themselves are incompatible with the required FIPS standards. Sometimes the Open Source code is old enough that they still hand-craft their own crypto code dating from a time when the US Government tried to restrict some crypto algorithms.
This talk will cover an engineers perspective on what getting FIPS certification for a product requires in terms of code changes, testing, and compliance.
Welcome to the FIPS trenches, here is your shovel. Start digging!
Speaker Bio:
Jeremy Allison is one of the lead developers on the Samba Team, a group of programmers developing an Open Source Windows compatible file and authentication server product for UNIX systems. Developed over the Internet in a distributed manner similar to the Linux system, Samba is used by all Linux distributions as well as many thousands of corporations worldwide. Jeremy handles the co-ordination of Samba development efforts and acts as a corporate liaison to companies using the Samba code commercially.
He works for CIQ, Inc. as a distinguished engineer focused on improving Rocky Linux-based storage products and Samba.
Details:
7:00 PM Social
7:30 PM BayLISA announcements & introduction
7:45 PM (ish) Talk begins
Online link will be sent out when event starts.