From Vulnerable to Vigilant: A 10+ Year Roadmap for Embedded Software Maintenance

By Jan Lübbe of Pengutronix
Time: 13:30 Room: S5

Abstract

While the technical aspects of building embedded Linux systems may seem straightforward initially, the inherent complexity and continuous development often lead to significant risk down the line. The reality is that even some newly launched products contain outdated or vulnerable software.
In this presentation, Jan Lübbe will examine the reasons behind the failure of seemingly reasonable development and long-term maintenance approaches and propose a sustainable workflow for effective software management. By integrating required features into the upstream projects early, aligning with their support cycles, and establishing a predictable maintenance and testing schedule, developers can address security issues with controlled risk.

Biography

After building Linux smartphones with OpenMoko and deploying open source GSM networks to cruise ships, Jan Lübbe joined Pengutronix in 2012. Since then he helps customers understand Linux and how it can solve their problems. Besides his work at Pengutronix, Jan builds wireless mesh networks at the Stratum 0 hacker space in Brunswick. Previously, he presented at Embedded Linux Conference Europe, FOSDEM, the Linux Days in Chemnitz and the OSADL Networking Days.