Session: 2 for 1: The 7 Security Layers – One OSI to Rule Them All / Frankenpipe: Bringing Secure ML Pipelines to Life
The 7 Security Layers – One OSI to Rule Them All – Robert Jacobi
Learn the basics of the OSI (open systems interconnection) Security Model. Why it matters for open source projects, what you can control, and how to protect yourself from ongoing and increasing types of threats. Additionally, a quick overview of the Software Bill of Materials (SBOM) and Supply-chain Levels for Software Artifacts (SLSA) especially in light of the EU Cyber Resilience Act. Leave with an understanding of what you can review, measure, and protect today.
Frankenpipe: Bringing Secure ML Pipelines to Life – Patrick Smyth
Putting together a working ML pipeline can make you feel like Dr. Frankenstein. One day you’re digging up fresh data in the local graveyard. The next, you’re picking out the right frameworks and versions to bring your monster to life. And if you’re not careful, the final product, your model, may turn on you.
In this spookifying talk, Patrick will walk us through the art and science of stitching together a secure ML pipeline in 2025. From choosing and safely loading base models to determining the provenance of components such as containers in your infrastructure, we’ll outline how to train dependable models and run them safely in inference. Along the way, we’ll prepare for Halloween with hair-raising stories of data poisoning, supply chain attacks, and agency excesses. By the time we’re done, you’ll be a a modern Prometheus, bringing the forbidden fire of secure model training to your organization.
