Virtual Event
June 8-10, 2021
Learn More and Register to Attend
Back To Schedule
Tuesday, June 8 • 10:10 - 10:40
The Poisoned Well, Supply Chain Security, Open Source and Hyperledger - Vipin Bharathan, dlt.nyc

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Feedback form is now closed.

A software supply chain attack happens when a malicious party modifies any part of a software development stack to compromise a target down the chain. Any user of the target can be breached using the modifications in order to attack the system directly or to deliver a malicious payload. The recently well-publicized Solar winds hack has brought this vulnerability into focus. A vulnerability that has gained in potency and reach due to widespread use of COTS and COSS software. This talk starts by covering the history of such attacks as well as the types and the lead actors in the attacks. Open source software is crucial in the software ecosystem. The openness of FOSS is leveraged by supply chain attackers. The talk is aimed at raising awareness of supply chain vulnerability in open source development. Some mitigation measures are discussed, including applicability to Hyperledger.

avatar for Vipin Bharathan

Vipin Bharathan

Technical Strategist, DLT.nyc
Vipin Bharathan has experience as a developer in many different domains, including insurance, embedded systems programming, cryptography, payment systems, media, fx trading and debt capital markets. Vipin is currently working with the Digital Currency Global Initiative (DCGI), an... Read More →

Tuesday June 8, 2021 10:10 - 10:40 CEST
Virtual 4