Episode 108: Sarah Gran and Josh Aas: Sustainable Digital Infrastructure with Memory Safe Code episode artwork

EPISODE · Feb 11, 2022 · 42 MIN

Episode 108: Sarah Gran and Josh Aas: Sustainable Digital Infrastructure with Memory Safe Code

from Sustain · host SustainOSS

Guest Sarah Gran | Josh Aas Panelists Richard Littauer | Justin Dorfman Show Notes Hello and welcome to Sustain! The podcast where we talk about sustaining open source for the long haul. We are super excited to have two guests today, Sarah Gran and Josh Aas, who both work for ISRG, the Internet Security Research Group which consists of three projects: Let’s Encrypt, Divvi Up, and Prossimo. Sarah is a VP of Communication and fundraising for ISRG, and Josh is the Executive Director at ISRG. They are both working on Prossimo to bring memory safe code to critical digital infrastructure, which they will explain more in depth today. We also learn about some other projects they are investing in this year, and Sarah and Josh share some positive things they’re really excited about happening in 2022 with Prossimo. Go ahead and download this episode now to find out more! [00:02:03] We find out what ISRG is and how they choose which projects to focus on. [00:04:53] Josh explains the difference between Prossimo and Rust. [00:07:07] Josh and Sarah explain why memory allocation is so important. [00:10:33] Justin wonders if Log4j is on their radar in terms of funding, if that’s something ISRG can help them with, and how that has brought more attention to memory safe languages. [00:13:03] We hear about the relationship ISRG has with the Linux Foundation. [00:15:21] Sarah shares what they’ve done so far to make the Prossimo project sustainable. [00:18:21] We find out what the budget is for running ISRG, and how they make that budget for what they are trying to accomplish. [00:22:40] Josh tells us about using Linkerd if you’re looking for memory safety in that space. [00:24:40] Besides working on major projects that have had massive impacts like he had with Let’s Encrypt, Josh shares things that have been difficult for him this year. [00:27:02] Josh explains how Cloudflare deals with DDoS attacks, and if there’s been any open line of communication with NginX. [00:29:55] Josh and Sarah detail what they’re doing to get the word out about Prossimo which includes four criteria they use to decide what they’re going to engage with. [00:33:18] We hear about some projects they are investing in this year, such as Rustls, Linux kernel, and NTP. [00:35:07] What are Sarah and Josh most excited about happening in 2022? [00:41:35] Find out where you can follow Josh, Sarah, and Prossimo online. Quotes [00:04:05] “We just like to do a lot research about what we’re doing. We’re not a throw it at the wall and see what sticks organization.” [00:12:05] “From my perspective in communications and fundraising, I think this is a great moment for us to help people understand that memory safety isn’t at the crux of Log4j.” [00:14:31] “Rising tides raises all ships.” [00:25:27] “We have a huge amount of history that tells us C++ code is not safe.” [00:29:25] “I really hope that ten years from now, the number one web server is not written in C, that cannot happen, we can’t allow that to happen. Popular web servers written in C need to go.” [00:36:37] “We can have a plan to boot OpenSSL off the internet. That’s a dream of mine and I think that’s an achievable goal.” Spotlight [00:38:09] Justin’s spotlight is Twitter communities. [00:38:33] Richard’s spotlight is Karl Becker. [00:39:14] Sarah’s spotlight is Crowdin. [00:40:43] Josh’s spotlight is Qubes OS. Links SustainOSS SustainOSS Twitter SustainOSS Discourse SustainOSS Podcast Josh Aas Twitter Josh Aas LinkedIn Sarah Gran Twitter Sarah Gran LinkedIn Internet Security Research Group Prossimo Let’s Encrypt Apache Log4j Linkerd Justin Dorfman Twitter Crowdin Karl Becker GitHub Qubes OS Credits Produced by Richard Littauer Edited by Paul M. Bahr at Peachtree Sound Show notes by DeAnn Bahr Peachtree Sound Special Guests: Josh Aas and Sarah Gran.

Guest Sarah Gran | Josh Aas Panelists Richard Littauer | Justin Dorfman Show Notes Hello and welcome to Sustain! The podcast where we talk about sustaining open source for the long haul. We are super excited to have two guests today, Sarah Gran and Josh Aas, who both work for ISRG, the Internet Security Research Group which consists of three projects: Let’s Encrypt, Divvi Up, and Prossimo. Sarah is a VP of Communication and fundraising for ISRG, and Josh is the Executive Director at ISRG. They are both working on Prossimo to bring memory safe code to critical digital infrastructure, which they will explain more in depth today. We also learn about some other projects they are investing in this year, and Sarah and Josh share some positive things they’re really excited about happening in 2022 with Prossimo. Go ahead and download this episode now to find out more! [00:02:03] We find out what ISRG is and how they choose which projects to focus on. [00:04:53] Josh explains the difference between Prossimo and Rust. [00:07:07] Josh and Sarah explain why memory allocation is so important. [00:10:33] Justin wonders if Log4j is on their radar in terms of funding, if that’s something ISRG can help them with, and how that has brought more attention to memory safe languages. [00:13:03] We hear about the relationship ISRG has with the Linux Foundation. [00:15:21] Sarah shares what they’ve done so far to make the Prossimo project sustainable. [00:18:21] We find out what the budget is for running ISRG, and how they make that budget for what they are trying to accomplish. [00:22:40] Josh tells us about using Linkerd if you’re looking for memory safety in that space. [00:24:40] Besides working on major projects that have had massive impacts like he had with Let’s Encrypt, Josh shares things that have been difficult for him this year. [00:27:02] Josh explains how Cloudflare deals with DDoS attacks, and if there’s been any open line of communication with NginX. [00:29:55] Josh and Sarah detail what they’re doing to get the word out about Prossimo which includes four criteria they use to decide what they’re going to engage with. [00:33:18] We hear about some projects they are investing in this year, such as Rustls, Linux kernel, and NTP. [00:35:07] What are Sarah and Josh most excited about happening in 2022? [00:41:35] Find out where you can follow Josh, Sarah, and Prossimo online. Quotes [00:04:05] “We just like to do a lot research about what we’re doing. We’re not a throw it at the wall and see what sticks organization.” [00:12:05] “From my perspective in communications and fundraising, I think this is a great moment for us to help people understand that memory safety isn’t at the crux of Log4j.” [00:14:31] “Rising tides raises all ships.” [00:25:27] “We have a huge amount of history that tells us C++ code is not safe.” [00:29:25] “I really hope that ten years from now, the number one web server is not written in C, that cannot happen, we can’t allow that to happen. Popular web servers written in C need to go.” [00:36:37] “We can have a plan to boot OpenSSL off the internet. That’s a dream of mine and I think that’s an achievable goal.” Spotlight [00:38:09] Justin’s spotlight is Twitter communities. [00:38:33] Richard’s spotlight is Karl Becker. [00:39:14] Sarah’s spotlight is Crowdin. [00:40:43] Josh’s spotlight is Qubes OS. Links SustainOSS SustainOSS Twitter SustainOSS Discourse SustainOSS Podcast Josh Aas Twitter Josh Aas LinkedIn Sarah Gran Twitter Sarah Gran LinkedIn Internet Security Research Group Prossimo Let’s Encrypt Apache Log4j Linkerd Justin Dorfman Twitter Crowdin Karl Becker GitHub Qubes OS Credits Produced by Richard Littauer Edited by Paul M. Bahr at Peachtree Sound Show notes by DeAnn Bahr Peachtree Sound Special Guests: Josh Aas and Sarah Gran.Support Sustain

NOW PLAYING

Episode 108: Sarah Gran and Josh Aas: Sustainable Digital Infrastructure with Memory Safe Code

0:00 42:36

No transcript for this episode yet

We transcribe on demand. Request one and we'll notify you when it's ready — usually under 10 minutes.

Chewing the Fat with WorkForge WorkForge Bite-Sized Conversations for Building a Stronger Workforce Welcome to Chewing the Fat, a podcast delving deep into the world of food manufacturing. Dive into real conversations around critical topics like staffing, retention, onboarding, and career development in this essential industry. Subscribe now to gain insights from your peers, subject matter experts and more on the biggest issues facing food manufacturers today: -Hiring and retaining employees -Addressing the challenges of the Silver Tsunami -Improving time to productivity of new employees -Engaging employees from hire to retire And more... Tune in to Chewing the Fat, a WorkForge podcast, and join the conversation on how to build and sustain a resilient, high-performing workforce in food manufacturing. Leap Like Me Lisa Hoashi Sometimes life asks us to make a bigger change than we expected. Welcome to Leap Like Me, where we offer real stories, inspiration and practical advice on how to make purposeful, brave leaps in life – and sustain them even through challenging times. Life Coach Lisa Hoashi explores the strategies and mindset you need to make brave changes in your life and work. Featuring guest appearances from people who have stretched their sense of what's possible in their own lives, the show will help you to reimagine what's possible for you too. Evolve: Reinventing Leadership - Building Freedom Cultures Yvette Bethel Yvette Bethel invites leaders to explore, create, and sustain a freedom culture in their organization. KaiNexus: Continuous Improvement, Leadership, and More KaiNexus We deliver practical insights and real-world strategies for Lean, Six Sigma, and Operational Excellence. Through lessons from KaiNexus webinars and conversations with customers, improvement leaders, and team members, each episode explores what it takes to build a resilient culture of Continuous Improvement. Learn how organizations engage employees, strengthen problem-solving capability, and sustain meaningful operational results across industries. Whether you're new to CI or leading major transformation, this podcast offers tools and perspectives you can put to work immediately.

Frequently Asked Questions

How long is this episode of Sustain?

This episode is 42 minutes long.

When was this Sustain episode published?

This episode was published on February 11, 2022.

What is this episode about?

Guest Sarah Gran | Josh Aas Panelists Richard Littauer | Justin Dorfman Show Notes Hello and welcome to Sustain! The podcast where we talk about sustaining open source for the long haul. We are super excited to have two guests today, Sarah Gran...

Can I download this Sustain episode?

Yes, you can download this episode by clicking the download button on the episode player, or subscribe to the podcast in your preferred podcast app for automatic downloads.
URL copied to clipboard!