Register Here

OSFF London 2022 Schedule is live

OSFF London 2022: Hot Topics Security | AI | Payments Track

  • LINK

    Register Here

    OSFF London 2022 Schedule is live

  • LINK

    Supply Chains & SBOMs – The New Benchmarks for Open Source Integration

    In this talk PwC talks about standardisation of Open Source compliance and security within the Financial Services sector. How can a basis of trust towards Open Source be introduced and how can this be demonstrated for one's own supply chain? What role do projects like OpenChain, the OpenChain Security Assurance Guide, SBOM standards, Sigstore, SLSA and also the distributors have to play so that Open Source use becomes scalable, documentable and assessable? Open Source might bring new security gaps, attack vectors and licence compliance problems into software stacks. How to deal with this in a standardised way? Internal criticality considerations define whether and how licence compliance and security are practised. From optional licence compliance through damage-control strategies to optional security of the development through release rigidity for technical reasons, there are always reasons not to look too closely. Concepts around Open Source and its security and subsequent use are increasingly coming into focus, especially when considering supply chains. The central question arises: What must happen so that Open Source management is not always custom-made?

  • LINK

    The Challenges of Deploying Real-time AI for Finance & How Open Source Can Help

    Real-time AI/ML use cases for Financial Services are on the rise, but deploying them at scale reliably and cost effectively is challenging. In this talk we will see how open source software for machine learning operations (MLOps) and Feature Stores in particular, are helping address these challenges. We will also explore a few case studies in production, in which tools such as open source Feast together with open source Redis are deployed in FinTech companies for real-time use cases such as fraud detection and lead scoring.

  • LINK

    Extending SBOMs to Describe AI Systems

    Regulations are emerging in Europe and the US, that have the expectation that a software bill of materials (SBOMs) will be expected deliverable in the supply chain in the coming year. This improvement in transparency of system software, has many advantages from a license compliance and a security analysis perspective, but what about AI? There is still a gap on how to represent the relevant facts about AI models and data on such systems. This talk will go through a proposal to extend a standard SBOM format to include additional information necessary to foster trust in the AI by capturing necessary facts that will increase the transparency and trust of systems being deployed. We hope engage in an interactive session with the audience to help us refine the current proposal so that the needs of the financial sector are covered.

  • LINK