Martin Schwaighofer
Martin Schwaighofer is a PhD student at JKU in Austria, interested in proving the link between a running system and it's source code.
Sessions
10-25
14:00
10min
hashes all the way down
Martin Schwaighofer
Nix and similar systems are based on hashing their inputs.
I took a really close look at how this works, and I'd like to help you understand it better as well.
Arena
10-25
17:05
45min
rebuilding builders instead of trusting trust
Martin Schwaighofer
The key principles Nix is built on are great for supply chain security.
Those principles could take us much further, if we extended or replaced the signatures that provide transport security for binary caches today, in favor of a more powerful mechanism.
A mechanism that works end to end from builder to user, includes provenance data about the builder, and ideally makes that provenance data verifiable.
Arena