We're sorry but this page doesn't work properly without JavaScript enabled. Please enable it to continue.
Feedback

Software distribution: new points of failure

00:00
subtitles
off
playback rate
1
subtitles
off
English (auto-generated)
playback rate
0.25
0.5
0.75
1
1.25
1.5
1.75
2
quality
576p
1
 Cite
 Share
 Related Material
 Download Purchase
Logo of FOSDEM VZWFOSDEM VZW
 Patrakov, Alexander E.

Formal Metadata

Title
Software distribution: new points of failure
Subtitle
In a censored world
Title of Series
Number of Parts
490
Author
License
CC Attribution 2.0 Belgium:
You are free to use, adapt and copy, distribute and transmit the work or content in adapted or unchanged form for any legal purpose as long as the work is attributed to the author in the manner specified by the author or licensor.
Identifiers
Publisher
Release Date
Language

Content Metadata

Subject Area
Genre
Abstract
There is a multitude of software or code ecosystems: Linux distribution packages, language-specific (e.g. Python or node.js) modules, third-party desktop themes, git repositories, and recently also Flatpak and Snap. Users thus obtain software and code mainly from the network. This talk explores what can go wrong in such code delivery mechanisms, and what actually went wrong when a new threat has materialized: networks in certain countries started to be unreliable "thanks" to the governments (classical example: https://isitblockedinrussia.com/?host=7-zip.org == true). And what technical steps can be done in order for the said ecosystems to survive when censorship and overblocking spreads over the globe even more. The focus will be on how mirror networks and CDNs operate (and what's the difference and why it matters), illustrated by examples of Debian mirrors and NPM. Both availability and integrity concerns regarding code delivery will be discussed.
00:00
Point (geometry)Slide ruleSoftwareDistribution (mathematics)Point (geometry)BitComputer animation
00:17
SoftwareEmailPhysical systemCodeFormal languageModul <Datentyp>Type theoryPresentation of a groupSoftwareProgramming languageInternetworkingPresentation of a groupOpen sourceBitDependent and independent variablesProduct (business)Physical systemStokes' theoremFormal languageClosed setCodeQuicksortCD-ROMProjective planeComputer animation
01:28
CloningComputer networkProcess (computing)Transport Layer SecuritySoftware developerOpen sourceMalwareRevision controlTrojanisches Pferd <Informatik>ProgrammschleifeComputer networkOperator overloadingError messageAsynchronous Transfer ModeInternetworkingDatabase normalizationOpen sourceCodeRevision controlPlanningInformationDependent and independent variablesSoftware developerLevel (video gaming)AreaMereologyParticle systemInternetworkingComputer networkOperating systemComputer networkAsynchronous Transfer ModeReal numberConnected spaceGoodness of fitClient (computing)SoftwareInformation securityDirect numerical simulationForcing (mathematics)Transport Layer SecurityCommunications protocolIn-System-ProgrammierungImage resolutionServer (computing)Repository (publishing)Database normalizationMalwareElectronic mailing listComputer animation
03:56
Block (periodic table)MereologyInternetworkingZirkulation <Strömungsmechanik>InformationAsynchronous Transfer ModeInternet service providerInformationPhysical lawComputer networkElectronic mailing listWebsiteCentralizer and normalizerDistribution (mathematics)GradientLocal ringDemosceneComputer animation
04:56
Open sourceElementary arithmeticInternet forumWeb browserClique-widthInternet service providerStandard deviationWebsiteSoftware bugIn-System-ProgrammierungDifferent (Kate Ryan album)Block (periodic table)InformationPhysical lawBlogDemosceneContext awarenessSoftwareSpeciesRule of inferenceComputer animation
05:42
Block (periodic table)Electronic mailing listAddress spaceMassDensity of statesService (economics)Repository (publishing)FingerprintSlide ruleWebsiteComputer networkBlock (periodic table)Density of statesIn-System-ProgrammierungMassIP addressMereologyAxiom of choiceService (economics)Computer fileRow (database)Content delivery networkFluid staticsFood energyAddress spaceFormal grammarSpeciesComputer animation
07:17
Virtuelles privates NetzwerkPublic domainOnline helpArithmetic meanQuicksortPoint (geometry)Workstation <Musikinstrument>CASE <Informatik>Server (computing)Computer animation
08:08
Database normalizationServer (computing)Local ringDefault (computer science)Information overloadComputer configurationDistribution (mathematics)Server (computing)Structural loadDatabase normalizationInstallation artAddress spaceElectronic mailing listTouchscreenComputer animation
09:13
Physical systemTheoryLevel (video gaming)MereologyPoint (geometry)Single-precision floating-point formatWorkstation <Musikinstrument>Slide ruleComputer animation
10:10
Windows RegistryComputer networkContent (media)Computer networkContent (media)Length of stayWindows RegistryService (economics)Content delivery networkServer (computing)Computer networkStructural loadTask (computing)Computer animationLecture/Conference
10:43
Public domainOperator (mathematics)Single-precision floating-point formatServer (computing)Public key certificateContent delivery networkQuery languageWindows RegistryFormal verificationPoint cloudAddress spaceTheoryOperator overloadingComputer networkError messageClient (computing)Domain nameInformation securityCASE <Informatik>Process (computing)Computer networkIP addressUsabilityRouter (computing)Server (computing)Single-precision floating-point formatAddress spaceInternet service providerDifferent (Kate Ryan album)Default (computer science)Client (computing)Information overloadWindows RegistryCodePublic key certificateMultiplication signSoftware maintenanceInstallation artPhysical systemResultantWebsiteOperator (mathematics)InternetworkingWeb pageMetadataFamilySpacetimeRevision controlGoogolInheritance (object-oriented programming)Dot productArtificial neural networkArithmetic meanBuildingTheoryStructural loadService (economics)RoutingOpen sourcePoint (geometry)Reading (process)Mechanism designNormal (geometry)PhysicalismMenu (computing)MathematicsImplementationArithmetic progressionRow (database)Dependent and independent variablesComputer animation
14:40
Insertion lossWindows RegistryMobile WebCASE <Informatik>
15:01
Client (computing)AliasingCodeWindows RegistryExterior algebraElement (mathematics)Incidence algebraInternetworkingWindows RegistryINTEGRALComputer animation
15:54
Equals signComputer networkData recoveryCuboidService (economics)Content delivery networkContent (media)Computer animation
16:15
Address spaceClient (computing)Block (periodic table)CurvatureDirect numerical simulationSingle-precision floating-point formatRoutingDirect numerical simulationAddress spaceClient (computing)Content delivery networkBlock (periodic table)ResultantNamespaceCASE <Informatik>Point (geometry)Physical systemVotingDressing (medical)Structural loadSoftwareProper mapLevel (video gaming)Spring (hydrology)Computer animation
18:01
Database normalizationClient (computing)Data modelInformation securityClient (computing)Information securityDatabase normalizationEndliche ModelltheorieSoftwareServer (computing)Computer animation
18:49
Service (economics)Software testingServer (computing)EmailDifferent (Kate Ryan album)Installation artInternet service providerPoint (geometry)MathematicsRow (database)Computer animation
20:54
Open sourcePoint cloudFacebook
Transcript: English(auto-generated)