September 13-16, 2022
Dublin, Ireland + Virtual
View More Details & Registration
Note: The schedule is subject to change.

The Sched app allows you to build your schedule but is not a substitute for your event registration. You must be registered for Open Source Summit Europe 2022 to participate in the sessions. If you have not registered but would like to join us, please go to the event registration page to purchase a registration.

This schedule is automatically displayed in Irish Standard Time (UTC +1). To see the schedule in your preferred timezone, please select from the drop-down menu to the right, above "Filter by Date."

IMPORTANT NOTE: Timing of sessions and room locations are subject to change.

Back To Schedule
Wednesday, September 14 • 12:10 - 12:50
Privacy-preserving Approaches to Transparency Logs - Hayden Blauzvern, Google

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Feedback form is now closed.
Append-only transparency logs have become more prominent in infrastructure over the last few years. Certificate authorities include issued certificates in transparency logs for public auditability. Sigstore, a standard for signing and verifying digital artifacts, uses a transparency log to record signing events. Blockchains are built on top of immutable logs. Append-only logs can raise interesting questions, particularly around a right to erasure. Log entries cannot be mutated or removed without impacting the integrity of the log. When an entry in a log contains personally identifiable information and a user requests that information be removed, how can a log operator handle this request? In this talk, we will discuss the technical details of append-only logs and issues around persisting PII in a transparency log, and compare and contrast techniques to provide immutable, auditable logs while preserving users' rights.


Hayden Blauzvern

Software Engineer, Open Source Security Team, Google
Hayden is a software engineer on Google's Open Source Security Team, focused on making open-source software more secure. Hayden is a maintainer on the Sigstore project. Prior to working in open source, Hayden worked for Google Cloud Platform to provide cloud-based PKI.

Wednesday September 14, 2022 12:10 - 12:50 IST
Wicklow Hall 2B (Level 2)
  SupplyChainSecurityCon, Countering Build Threats