We're sorry but this page doesn't work properly without JavaScript enabled. Please enable it to continue.
Feedback

Fortifying the Foundations: Elevating Security in Nix and NixOS

Logo of FOSDEM VZWFOSDEM VZW
 Mills-Howell, Dominic

Formal Metadata

Title
Fortifying the Foundations: Elevating Security in Nix and NixOS
Title of Series
Number of Parts
798
Author
License
CC Attribution 2.0 Belgium:
You are free to use, adapt and copy, distribute and transmit the work or content in adapted or unchanged form for any legal purpose as long as the work is attributed to the author in the manner specified by the author or licensor.
Identifiers
Publisher
Release Date
Language

Content Metadata

Subject Area
Genre
Abstract
Securing NixOS and Nixpkgs is critical for widespread adoption. As one of the nine recently selected Sovereign Tech Fund projects, this talk discusses the mechanisms in place to reduce reliance on external binaries, ensuring code integrity during compilation, and implementing mechanisms for delivering up-to-date, secure software sustainably. We discuss the implementation by the Nix security team that focuses on streamlining processes, enhancing NixOS and Nixpkgs security, and transparently communicating vulnerability patch timelines to users, delving into the strategies implemented in phase one of this project to fortify NixOS and Nixpkgs security efficiently and effectively.