Program Committee

Kees Cook has been working with Free Software since 1994, has been a Debian Developer since 2007, and has been a member of the Linux Kernel Technical Advisory Board since 2019. He is currently employed as a Linux kernel security engineer by Google, focusing on upstream kernel security defenses.

From 2006 through 2011 he worked for Canonical as the Ubuntu Security Team’s Tech Lead. Before that, he worked as the lead sysadmin at OSDL, before it was the Linux Foundation. He has written various utilities including GOPchop and Sendpage, and contributes randomly to other projects including fun chunks of code in OpenSSH, Inkscape, Wine, MPlayer, and Wireshark.

Serge Hallyn has been involved with container technology since 2005, focusing first on upstreaming kernel features and later joining the userspace efforts of the lxc project. He is a core maintainer for lxc and a co-creator of lxd. He earned his PhD at the College of William and Mary in 2003, and is currently a Principal Engineer at Cisco, Inc.

John Johansen began working with open source software in the late 80s and began playing with Linux in 93. He completed a masters in mathematics at the University of Waterloo and the began working for Immunix doing compiler hardening, and then AppArmor. After Immunix was acquired by Novell he began working on Suse Linux and in 2009 he joined Canonical as a kernel engineer. He is currently employed by Canonical as a security engineer with a primary focus on supporting the AppArmor project.

Paul Moore has been involved in various Linux platform security efforts since 2004 at Hewlett-Packard, Red Hat, Cisco, and Microsoft. He currently maintains the Linux Security Module (LSM) layer as well as the SELinux, audit, and labeled networking subsystems in the Linux Kernel. Paul also created and maintains the libseccomp userspace library.

Linux kernel security developer, currently leading the Linux Emerging Technologies team at Microsoft.

Elena Reshetova is a security architect and researcher at Intel working on various Linux security projects. Her current research interests evolve around Linux kernel hardening for the confidential cloud computing.

Casey Schaufler founded the Smack project in 2006 after an especially heated debate with the SELinux developers on a topic now long forgotten. He has been developing secure operating systems since the late 1980’s, starting the system that became Trusted Solaris and architecting Trusted Irix. He was the technical editor for the influential POSIX P1003.1e/2c security draft standard. He is currently working on the Linux Security Module infrastructure.

Stephen Smalley is a senior technical leader and subject matter expert in the Laboratory for Advanced Cybersecurity Research organization of the National Security Agency. He has over 25 years experience leading research, design, implementation, technology transfer, and application of hardware and software security architectures and mechanisms to solve key cybersecurity challenges. Mr. Smalley is best known for having led the development and successful technology transfer of Security Enhancements for Android (SE for Android) and Security-Enhanced Linux (SELinux) to mainline Android and Linux respectively, and continues to serve as one of the SELinux kernel maintainers.

Dr. David A. Wheeler is an expert on open source software (OSS) and on developing secure software. His works on developing secure software include “Secure Programming HOWTO”, the Open Source Security Foundation (OpenSSF) Secure Software Development Fundamentals Courses, and “Fully Countering Trusting Trust through Diverse Double-Compiling (DDC)”. He is the Director of Open Source Supply Chain Security at the Linux Foundation and teaches a graduate course in developing secure software at George Mason University (GMU). Dr. Wheeler has a PhD in Information Technology, a Master’s in Computer Science, a certificate in Information Security, a certificate in Software Engineering, and a B.S. in Electronics Engineering, all from George Mason University (GMU). He is a Certified Information Systems Security Professional (CISSP) and Senior Member of the Institute of Electrical and Electronics Engineers (IEEE). He lives in Northern Virginia.

Mimi Zohar is a member of the Cloud and Systems Security Research group at the IBM T.J. Watson Research Center. Her current interests are in the areas of system security and integrity. She is the linux-integrity subsystem maintainer and a member of the Linux Security Summit(LSS) program committee.