2024-04-16 - 12:00

Dates and Events:

OSADL Articles:

2023-11-12 12:00

Open Source License Obligations Checklists even better now

Import the checklists to other tools, create context diffs and merged lists


2023-03-01 12:00

Embedded Linux distributions

Results of the online "wish list"


2022-01-13 12:00

Phase #3 of OSADL project on OPC UA PubSub over TSN successfully completed

Another important milestone on the way to interoperable Open Source real-time Ethernet has been reached


2021-02-09 12:00

Open Source OPC UA PubSub over TSN project phase #3 launched

Letter of Intent with call for participation is now available



OSADL Special Events

OSADL Special Events

COOL - Compact OSADL Online Lectures



Online event

What is COOL?

COOL - Compact OSADL Online Lectures: Open Source meets Industry

  • COOL is an OSADL webinar series.
  • COOL takes place regularly once a month and covers new and state-of-the-art topics on Open Source software in industry, either on legal or on technical aspects.
  • COOL editions each consist of two lectures covering a special "Open Source meets industry" topic followed by a discussion round. The first "basic" lecture provides basic knowledge with regard to the respective topic and the second "advanced" lecture dives deeper into the topic and highlights special aspects. The discussion round gives all participants the possibility to ask questions and discuss with the respective speakers and the audience.
  • COOL speakers are OSADL experts on the one hand and external specialists on the other hand who kindly agreed to share their expert knowledge on the respective topic.
  • COOL is a virtual event. The lectures are held by live video streams. Speakers will be available for questions and discussion in a video conference which will take part subsequent to the live video streams.
  • COOL in general is designed to provide support how to best and compliantly use Open Source software in industry.

COOL February 2024 edition

Security of embedded systems
Wednesday, February 28, 2024, 2pm to 4pm CET

Agenda COOL February 2024 edition:

2:00pm to 2:45pm CET:

Theoretical part: The role of CERT@VDE in the vulnerability management of embedded systems, Andreas Harner, CERT@VDE

2:45pm to 3:30pm CET:

Practical part: OSADL pentesting services for embedded system security, Jan Altenberg, Alexander Bähr, OSADL

3:30pm to 4:00pm CET:

Discussion and possibility to ask questions

Description COOL February 2024 edition:

One of the difficulties of looking after the security of embedded systems is that there are a large number of different issues to consider. For example, information about newly discovered vulnerabilities must be obtained, engineers must be trained in secure programming, corporate data storage and management must be secured, Web and other servers must be protected from unauthorized access, and yet products must be thoroughly tested against any kind of intrusion - to name just a few of the many issues. And finally, as we've all learned recently, regulatory requirements that will likely require another relatively large amount of work await us this year when the Cyper Resilience Act (CRA) comes into effect.

OSADL has set itself the goal of supporting companies in every aspect of the development of embedded systems and this obviously includes all the security aspects mentioned above. However, it is not possible to set up everything at once, but this must be done stepwise, and as a first step it is recommended to establish a suitable mechanism to obtain vulnerability reports. In this context, OSADL is very grateful that Andreas Harner from CERT@VDE has accepted the invitation to talk about how CERT works, what the CERT portfolio is, what has recently been added and what the arguments are for joining CERT. Last but not least, the requirements for vulnerability management for embedded systems, which is expected to be mandatory under the CRA will be addressed.

As another important step to consider with high priority, it is recommended to take care of the security of the embedded system itself. One aspect of this is pentesting. For this purpose OSADL has set up a pentesting server as an additional member service. Jan Altenberg and Alexander Bähr of OSADL will present this new service in detail and provide examples of what the documentation of a pentest looks like.

Recommended audience COOL February 2024 edition:

Software developers and engineers, hardware developers and engineers, system integrators, field application engineers, etc.

About the speakers of the COOL February 2024 edition:

- Andreas Harner, CERT@VDE & Cybersecurity: Andreas Harner is head of the "CERT@VDE & Cybersecurity", department at DKE (German Commission for Electrical, Electronic & Information Technologies) in VDE e.V. He is responsible for operational activities of CERT@VDE and cybersecurity in standardisation at DKE. Andreas Harner has many years of experience as a project manager, technical support manager and software developer at various IT/telecommunications companies. He studied communications/data technology (TU Darmstadt), degree: Diplom-Ingenieur (TU).

- Jan Altenberg, OSADL: Jan Altenberg has more than 15 years of experience in developing and maintaining Embedded Linux systems. Jan studied information technologies at the University of Cooperative Education in Stuttgart (Germany). From 2002 - 2006 he was involved in the OCEAN project, a European research project, which defined an open controller platform based on real-time Linux and real-time CORBA. From 2007 to 2019 he worked for Linutronix as a Consultant, Trainer and Head of Technical sales. From April 2019 to 2021 he worked as Open-Source Technology Expert and Open-Source Compliance Officer for Continental Automotive GmbH. Since October 2021 Jan works as Senior Open Source Consultant and Embedded Systems Integrator at the Open Source Automation Development Lab (OSADL) eG and since 2024, he also serves on the OSADL board of directors. Jan is a frequent speaker on several conferences. In 2014, 2018 and 2019 he has been awarded with the "best speaker award" at the Embedded Software Engineering Congress in Sindelfingen (Germany).

- Alexander Bähr, OSADL: Alexander Bähr is a state certified technician with a focus on control engineering. Since his youth Alexander has been enthusiastic about electronics and data processing, especially Linux and Open Source. During his further professional activity with the main focus on measurement technology and its data processing, he has successfully used the various options of Open Source software in his professional environment for many years. Since 2020 Alexander works as a technical computer scientist at the Open Source Automation Development Lab (OSADL) eG.

Past COOL webinars

(Click on title to expand display.)

2024

2023

2022

2021

2020


Please click on the respective COOL edition in order to display the full agenda and more details about the lectures and the respective guest speakers.

Download of COOL overview September - December 2023 as PDF file (v4)
Download of COOL overview January to May 2023 as PDF file
Download of COOL overview September to December 2022 as PDF file
Download of COOL overview January to May 2022 (new - v7) as PDF file
Download of COOL overview September - December 2021 as PDF file
Download of COOL overview January - May 2021 as PDF file

COOL conference language

The COOL sessions will be in English language.

COOL registration

Please use the online registration form to register for a particular COOL edition: Online registration form.
The access data will be sent to the registered participants shortly before the event.

COOL participation fee

Participation in COOL is free of charge.

COOL feedback

We would appreciate if participants of COOL completed and submitted the following feedback questionnaire in order to better meet their requirements and consider their suggestions in future events: Feedback sheet. Thanks in advance.

COOL presentations

The presentations and video clips of all COOL sessions will be made available after the event. Material of the theoretical part will be publicly available, material of the practical part will be available exclusively for OSADL members or participants with login.

COOL Presentations and video clips (Member or participant login required to display material of the advanced lectures)

Privacy policy

When you register for participation in the event you agree that the personal data you enter in the registration form will be processed at OSADL as necessary (see our privacy policy).

You may revoke this agreement at any time by email, mail or phone using the communication data provided at the imprint page, but this will also cancel your registration.

Questions?

Please do not hesitate to contact us in case you have further questions:
Andrea Ruf
officeªosadl.org
Phone.: +49 6221 98504 13