Find below the Official Schedule v1.0 (as of March 24, 2016). Slight changes may be made over the coming week — including session descriptions, panelist bios and room locations. Be sure to click on "Attendees" to see who’s coming and set up a personal profile. You can then select the sessions you wish to attend and create your own customized RightsCon schedule. Visit our RightsCon site for more details.
"Help define how we measure the adoption of best practices that support the security and privacy of software. Which tools are open-source or provide end-to-end encryption? Which implement forward secrecy or support two-factor authentication? Which have security features that are usable without prior expertise or training? Which can be downloaded securely and verified to be authentic? Data about the adoption of security and privacy best practices are often difficult to find and rarely easy for users to understand. How can the adoption of these practices be measured, and what is the most useful structure for such a broad range of measurements?
Over the past two years, we have assembled a list of a hundred possible metrics related to various aspects of software development, including governance, systems, architecture, build and user experience. Workshop participants will contribute to an ongoing consultation about best practices and their measurability. Together, we will build upon an open framework designed to guide the development of partnerships and infrastructure to collect metrics about software practices that impact end user privacy and security.
This framework will help clarify how specific practices mitigate specific threats and will provide a methodological context that will be kept up-to-date as the threat landscape evolves. Insights that currently surface in loose debates among experts will be captured in this structured conversation and integrated with available metrics to improve the transparency, reproducibility and traceability of key issues and assumptions.
The Open Integrity Index (https://openintegrity.org) collects, organises and publishes data about the adoption of software development best practices that impact end-user privacy and security. Through measurement partnerships and outreach partnerships, Open Integrity will support and extend efforts such as the EFF's Secure Messaging Scorecard, the Linux Foundation's Core Infrastructure Initiative and the Ranking Digital Rights project."