Agenda Friday track one – Nordic Software Security Summit

Oct 2

9:00-9:30

Games as tools for securing your apps

Johan Sydseter, Owasp

9:30-10:00

The ingredients for CRA compliance for SME with the open source OCCTET project

Philippe Ombredanne, AboutCode.org

10:00-10:30

Designing User Security Controls in SaaS Shared Security Model

Eetu Korhonen, Netskope

10:30-11:00

Break

Fika in the conference center

11:00-11:30

PKI Maturity as a Path to Cyber Resilience: Preparing for the EU CRA

Admir Abdurahmanovic, Keyfactor

11:30-12:00

Enhancing artifact security with GitHub Artifact Attestations

Fredrik Skogman, Github

12:00-12:30

Introducing CycloneDX 2.0

Steve Springett, OWASP

12:30-13:30

Lunch

13:30-14:00

CVD, CRA and EUVD from the perspective of a national CSIRT

Peter Jonegård, CERT-SE

14:00-14:30

CRA Insights from a manufacturer and steward

Roman Zhukov, Red Hat

14:30-15:00

To be announced

Monika Kullberg

15:00-15:30

Afternoon Break

Fika in the conference center

15:30-16:00

How to be a top notch CNA doing Open Source in spite of AI

Daniel Stenberg, Curl
Shared with track 2

16:00-16:30

To be announced

To be announced
Shared with track 2

16:30-17:00

Goodbye talk

Shared with track 2

One day training and two day conference covering the coming legislation on the software industry

✦ October 1-3, 2025

✦ Hotel Birger Jarl, Stockholm, Sweden

✦ Early bird pricing to Aug 1st!

Partners 2025
Cybernode.se
Dataföreningen Väst
NCC-SE
Eclipse Foundation
ORCWG
OpenSSF
OWASP
SIG Security