BEGIN:VCALENDAR
VERSION:2.0
PRODID:-//pretalx//cfp.all-systems-go.io//all-systems-go-2025//FSVZ9N
BEGIN:VTIMEZONE
TZID:CET
BEGIN:STANDARD
DTSTART:20001029T040000
RRULE:FREQ=YEARLY;BYDAY=-1SU;BYMONTH=10
TZNAME:CET
TZOFFSETFROM:+0200
TZOFFSETTO:+0100
END:STANDARD
BEGIN:DAYLIGHT
DTSTART:20000326T030000
RRULE:FREQ=YEARLY;BYDAY=-1SU;BYMONTH=3
TZNAME:CEST
TZOFFSETFROM:+0100
TZOFFSETTO:+0200
END:DAYLIGHT
END:VTIMEZONE
BEGIN:VEVENT
UID:pretalx-all-systems-go-2025-TBDBDA@cfp.all-systems-go.io
DTSTART;TZID=CET:20251001T160000
DTEND;TZID=CET:20251001T164000
DESCRIPTION:S3NS is a trusted cloud operator that self-hosts Google Cloud i
 nfrastructure in France\, targeting the SecNumCloud certification\, the mo
 st stringent Cloud certification framework. SecNumCloud includes strict le
 gal and operational constraints. \n\nTo manage these systems securely and 
 reproducibly\, we’ve built a family of dedicated administration terminal
 s based on the image based philosophy. \n\nThese terminals rely on NixOS s
 emantics and draw from the ParticleOS ecosystem: systemd-repart\, and dm-v
 erity\, ensuring atomic updates\, full immutability of the Nix store\, and
  verifiable integrity of the boot chain and runtime system (measured boot)
 \, while using remote attestations by TPM2 when connecting to production a
 ssets.\n\nWe will present the purpose of these terminals and what needs th
 ey serve along with their high level characteristics: partition layouts\, 
 provisioning and connection flow to the production assets.\n\nThis talk wi
 ll show an application of many of the concepts that were presented in the 
 NixOS ecosystem and in All Systems Go itself by the systemd community.
DTSTAMP:20260315T015403Z
LOCATION:Galerie
SUMMARY:A terminal for operating clouds: administering S3NS with image-base
 d NixOS - Ryan Lahfa\, Frederic Ruget\, Gautier LABADIE
URL:https://cfp.all-systems-go.io/all-systems-go-2025/talk/TBDBDA/
END:VEVENT
END:VCALENDAR