Welcome to the FOSSASIA Summit 2020!

FOSSASIA 2019 in Review

Continuous Integration for Sustainable Hardware Production in the Automotive Industry

How can Open Source help to build a sustainable world? How can SMEs and organisations leverage on SkillsFuture initiatives and Open Source to build sustainable solutions?

Be The Leader You Need

Open source crossed the chasm into mainstream with users in all industries. Maintaining the users’ trust and sustaining innovation is key to open source’s success.

However, in a world where communities are passionate, multicultural, and primarily use online communication, it is challenging to move communities towards a shared vision in a frictionless, sustainable way. Community challenges can impact innovation, putting user adoption at risk and even more importantly, hurting community members.

Stronger open source leadership can address these challenges and there is a call for more leaders in every project. Good news! Every contributor is a leader either through self leadership, leading others, or leading the community, yet most people have never been trained on how to lead.

This talk provides the leadership the training you need and covers:

- Why strengthen community leadership

- Key leadership and emotional intelligence principles

- Practical ways to lead as a contributor

Free Software licensing strengthens human freedom by preventing software developers from exerting control over what software users do with their own property. Open Source licensing facilitates extremely broad and efficient co-operation in software development, including by people who are direct competitors or have conflicting value systems. Embedding software-use restrictions into F/OSS licenses in order to advance a specific commercial interest or ethical perspective is understandable, but is entirely incompatible with both F/OSS licensing approaches.

MLflow is an open-source platform to streamline machine learning development, including tracking experiments, packaging code into reproducible runs, and sharing and deploying models. MLflow offers a set of lightweight APIs that can be used with any existing machine learning application or library (TensorFlow, PyTorch, XGBoost, etc), wherever you currently run ML code (e.g. in notebooks, standalone applications or the cloud). In this talk, we'll discuss MLflow's components and run through a quick demo.

The Open Vision Computer is a fully open source smart camera especially tailored for UAV applications and used in the past in the DARPA FLA program. The OVC 3 is the newest revision and includes three global shutter image sensors, two monochrome for stereo and one RGB for recognition, as well as an IMU and expansion capabilities for up to 11 cameras in parallel. It also runs Ubuntu 18.04 and ROS natively. The talk will introduce the architecture and capabilities of OVC for people who might want to use it and customize it for their application.

The healthcare domain has incredibly complex logistical needs around the clock to keep hospitals and various medical facilities running smoothly. As the growth of elderly populations outpace the growth of the workforce, the economies of scale are pushing healthcare providers towards automating as much of the logistics as possible. This includes delivering meals to patients, keeping supplies and medical instruments stocked, securely transporting pharmaceuticals, assisting patients who have difficulties with mobility, and more.Modern and emerging robot platforms can help address each of these needs on an individual basis, but all these technologies need to be seamlessly integrated a single facility, and no single robotics vendor can feasibly affordably offer a complete integrated solution at the scale that is required. As a vendor-neutral open source robotics software company, Open Robotics is working with several Singaporean government agencies and robot vendors to develop an open source framework and open specification to allow heterogeneous robot platforms from any compliant vendor to cohabitate the same facility. This talk will discuss our current progress in this endeavor.

Written in 2001, RFC 3170 states: "IP Multicast will play a prominent role on the Internet in the coming years. It is a requirement, not an option, if the Internet is going to scale. Multicast allows application developers to add more functionality without significantly impacting the network."  Nearly two decades later, multicast is still largely ignored and misunderstood.  There are many common misconceptions about multicast, including that it is only useful for streaming video and audio. It does so much more than that.  This talk explains why multicast is the missing piece in the decentralisation puzzle, how multicast can help the Internet continue to scale, better protect our privacy and democracy, solve IoT problems and make polar bears happier at the same time.

Major organisations are facing two seemingly contradicting threats: on the one hand, they are challenged to become more agile and efficient by the rise of new players such as startups and FinTech, while on the other hand, the constant flow of advanced attacks and breaches force them to become more cautious about their software. The competition requires fast execution and innovation, while security threats require more control. The speed of execution and complexity of attacks increases exponentially, however the attacks almost systematically rely on missed security hygiene, highlighting an evident truth: security and other IT operators are stretched thin by manual processes and traditional approaches to security.As DevOps approaches become mainstream, we can look at the evidence of what has enabled the success of the cloud tech giants: cloud-native architectures. Leveraging container orchestration, and end-to-end automation, cloud-native security enables security teams to reduce their manual tasks and focus on what matters most: reduce risk, developing added-value services, and collaborating with users and developers to raise awareness and build secure tools, finding vulnerabilities and suspicious activities and improving the incident response. In this presentation, we will review the improved security outcomes experienced by the largest organisations when transiting to a cloud-native architecture, as well as emerging practices enabling the teams to remain efficient and collaborate better.

Python Workshop

In a data science project, one of the biggest bottlenecks (in terms of time) is the constant wait for the data processing code to finish executing.

Slow code, as well as connectivity issues, affect every step of a typical data science workflow — be it for event-driven I/O operations or computation-driven workloads.

Through real-life analogies based on my experience in a young data science team getting started with real-world data, I will be exploring the use of parallel and asynchronous programming in Python to speed up your data processing pipelines so that you could focus more on getting value out of your data.

ko - zero-config tool for deploying Go app on k8s.ko leverages on opinionated import-path approach of Go to simplify the whole process of building binary + building container image + publishing image + apply to k8s --> one-liner command

This talk mainly discusses the architecture we built to handle thousands of requests per minute for location-based restaurant campaigns in Foodpanda. The main problem is we need to show the restaurant campaigns based on customer location. Foodpanda (https://www.foodpanda.com) serves customers in 11 Asia Pacific countries. Each country can have multiple campaigns where each campaign can have thousands of restaurants as part of it. Each vendor can have multiple delivery area polygons. For each request from the customer, we need to check if there are any campaigns belong to that customer and show it to them as fast as possible.

AR/VR market is increasing now!Since facebook released new head mount set called oculus quest, they are evolving more and more in 2019.Thus, in 2020 we are facing to new era of AR/VR, and introduce what we can do in AR/VR at this moment.We will see the future of our technology and how we developers have to face with this new device.

The talk addresses strategies to develop cloud applications using Golang and JavaScript and includes a quick look at some code sections.

Pandas, the de-facto standard DataFrame implementation in Python, is very popular among data scientists, but it does not scale well to big data. It was designed for small data sets that a single machine could handle. On the other hand, Apache Spark has emerged as the de-facto standard for big data workloads. Today many data scientists use Pandas for coursework, pet projects, and small data tasks, but when they work with very large data sets, they either have to migrate to PySpark to leverage Spark or downsample their data so that they can use pandas.

Now with Koalas, an open-source implementation of the Pandas API on Apache Spark, data scientists can make the transition from a single machine to a distributed environment without needing to learn a new framework. In this talk, we'll go through the basics of Koalas, along with demos.

GitHub Actions can orchestrate any workflow, based on any event on the GitHub platform.In this talk I share and showcase how to implement a CI/CD pipeline with open source GitHub action components. Also I share open source initiatives that move to GitHub Actions. The audience may use the presented open source examples to build their own CI/CD pipelines based on open source GitHub action components.

WebAssembly has been there for a while. Several technology platforms has progressed since its announcement in 2015. This talk will be a brief walkthrough on the following:

1. Web Assembly Introduction
2. How web assembly is used in different platforms/languages (e.g. .NET, Python, Rust, etc)
3. What's next on Web Assembly

SQLite with Python

I'm a beginner enthusiast in the world of software development and have been starting to learn about coding through the programming language of Python. Despite having little to no experience in programming, I've decided the best way to learn would be to just embark fully on a python-based project, as part of learning it. And so, the very first project I've decided to work on would be to create a simple algorithm on scraping the web for details of Jeju Korea. As, I am planning a trip there in early April, killing two birds with one stone essentially. With that, I decided again, to further challenge myself through giving a short lightning talk about it at one of Asia's most popular software and tech-event, on my experience on the project. But more importantly, I personally find it a pretty good way too, to share the experience with many other like-minded individuals, on the learning of programming from scratch with all the readily available open-source modules/libraries these days.

How do we break down a large JVM monolith without incurring runtime costs? How do we scale dependency injection in such an application running in a constrained environment like mobile? Does it play well with a modularized Android app? How do you visualize and navigate the graph as complexity grows?

In this session we will describe the mechanisms that we use at Twitter to facilitate modularization and decoupling utilizing dependency injection. We will also cover why Dagger is our tool of choice along with the shortcomings we encountered, and share some practical advice on how to address them. Finally, we’ll offer a sneak peek of the extensions that we built on top of Dagger to facilitate dependency injection that we plan to open source in 2020.

The microservices architecture, as part of a cloud solution design, is increasingly popular with application developers, because of it facilitates rapid, efficient design and deployment of a business service. Such an architecture involves the aggregation of individual microservices developed by small teams, who are further empowered with a flexible tooling and highly efficient coding languages. New architectures have evolved in the recent years, since microservices were invented. This talk will advocate the use of advanced microservices architectures, which will serve to address many issues the typical microservice project faces, including security, availability, manageability and scalability in large scale production environments.The audience will appreciate the adoption of open-source technologies, like Istio, VertX, SpringBoot, Quarkus and Kubernetes, in achieving the ambitious objectives of any successful microservices project.

Cybersecurity with Python

n this workshop, we will dive into the popular PyGame library.

First we will learn about basic arcade game architecture:

• Game loops
• Game stats
• Game objects
• Game play

Then Yue Lin will go through how she developed a Typing Tutor Game using PyGame.

Web Development with Flask

A signal generator and oscilloscope make it possible to see what an electronic circuit does to a signal that is applied to it. This workshop will make visible two fundamentals of the use of electronics in radio:- How a resonant or "tank" circuit operates to pass or block signals in a particular frequency range.- What happens when the impedance of a transmission line (e.g. an antenna cable) is not matched to its source or sink correctly.

Watch online: https://youtu.be/Ur65X6NLVKk

This talk will focus on the Five S’s: speed, stability, scalability, security and savings and how they can help shape a practical, useful and productive approach towards Kubernetes and containers in the enterprise.  With Kubernetes taking a dominant position in enterprise technology planning, particularly for platform engineering teams, Shaun will share advice and good practices based on Pivotal’s global customer base and our 5+ years’ experience of running containers in production, at scale, for some of the world’s most interesting companies.

Serverless has been garnering great attention and the various cloud platforms have started to provide them as services that anyone can use in order to build services that can scale to handle large amounts of traffic but also scale back to zero if its not zero.In this workshop, we would explore the technologies that power one such service: Google Cloud Run. We would be trying to deploy a Kubernetes cluster and add istio support on to it. After which, we would then install Knative on said cluster and deploy several serverless applications onto it and see how the cluster handles such traffic.

Get started with TensorFlow, the largest growing open-source Machine Learning library, to manipulate data and build neural networks without hassle.

OS Testing has never been so easy with containers! Testing can be very difficult task especially if it includes the installation process, booting, logging into desktop and verifying GUI applications. There are some good tools like openQA, but unforunately they have a big learning curve and require dedicated hardware. We need more easy-to-use alternatives with basic features that can be used interchangeably on personal laptop/desktop, server or as part of Jenkins, LAVA or GitLab.Thanks to containers we now have ability to perform such task easily anywhere by making use of Docker, QEMU and a simple PyAutoGUI Python module. The presentation will be a walk over this process including a short demo on GitLab which sends keystrokes or commands, mouse clicks to perform sample tasks while saving test results as screenshots or recordings.

In this session I am going to talk about kuberneteson Edge on the needs of it and by introducing both Kube Edge and K3s. Edge computing is evolving these days as the need for container orchestration at the edge is also getting more attention. Edge computing can be disastrous when the orchestration fails, we can solve the problem by adopting the already existing kubernetes technology at the edge, but the nature of kubernetes is that, it does not easily fits and sits at the edge. Kube Edge and K3S are two projects supported by CNCF and gives the ability for 

kubernetes framework to sit at the edge.

AnalyticDB for MySQL is a high-performance data warehousing service from Alibaba Cloud. AnalyticDB for MySQL uses a distributed computing architecture that enables it to use the elastic scaling capability of the cloud to compute tens of billions of data records in real time.

In this talk, I will be sharing about AnalyticDB for MySQL, the underlying architecture and how we achieve it.

Reddit is a social media which has an average of 1.6 billion users on an average monthly basis. About 56% of the Reddit users are young adults between the age of 18-29. I ran a survey of animals that were mentioned in various Reddit posts last month. Surprisingly, Alpacas are one the least talked about animals. This made me really inquisitive and on further research, I found out that there no wild alpacas left and about 98% of their population has already been wiped out. So I decided to raise awareness about Alpacas among Reddit users by making an Alpaca Bot. This bot is just basically a loop that checks all the latest comments, sees if someone has said 'alpaca' and then comments a random fact on it. Reddit allows programs to interact with their website by allowing those programs to access certain data through PRAW, where you can use python to access all the latest comments from all subreddits.

Building an Open Source Hardware manufacturing world is about the advances that MakerNet.org and Open Know How are making in enabling large scale distributed manufacturing, as well as inviting people to join us in developing open products and open standards to make it grow.

AI is the new electricity.  How could we get our children to be AI Ready?  This talk will share our experience on how to make our students tap on this new electricity.

Open Design is a collaboration between Adobe, Designit and Ushahidi. Looking at increasing and sustaining design contribution to open source and advocating for OSS in design, and design in OSS.

Ushahidi builds OSS humanitarian tools, remotely for some of the most marginalized people across the globe. To tackle these systemic problems with how to ‘open source’ a design effort and bring the community along with the ‘on-staff’ Ushahidi designers, we piloted a series of design events on Ushahidi’s OSS crisis communication tool TenFour with our partners Designit and Adobe. Together, we’re looking to solve the problems with how open source design can work by engaging through meaningful technology that makes a difference in the world.

In this session, we’ll briefly cover the history of the project and the main problems we attempted to solve and we’ll present the learning and adaptions to our workshop framework and methodology that aims to engage design teams and individuals that are not yet ‘on-board’ with OSS as an ethos or movement.

Looking into some the abstract deeper motivations for design professionals to contribute but also some practical tips on structuring issues, labelling and maintaining design (and extended functions like research, UX and product management) you’ll leave with a set of tools and methods you can apply to your OSS to engage with designers.

MySQL InnoDB Cluster has been known to be de-facto HA solution from MySQL.  But with the container technology, how can we run it on Kubernetes engine?  What everyone should know before running InnoDB Cluster on Kubernetes?

Edge Computing is a computing paradigm where deep learning models are run on devices with little computational power, like a Raspberry Pi. This reduces the dependence on cloud services for using AI and also increases security and reduces latency. OpenVINO is an open-source software toolkit from Intel that abstracts away hardware related details and helps deep learning engineers and researchers build AI applications for the edge. In this talk, I will explain the features of OpenVINO, the different tools it contains and how you can use OpenVINO to easily deploy and maintain all your Deep Learning and Edge Computing applications. In particular, I will show you how you can deploy a deep learning model for detecting soiling on solar panels, a task which needs edge computing, especially if you have large solar farms, to an edge computing device called the Neural Compute Stick, using OpenVINO and DevCloud

MySQL 8 vs. MariaDB 10.4 - Feature ComparisonAt the moment MySQL 8 and MariaDB 10.4 are the latest versions of the corresponding database management systems. Each of these DBMSs has a unique set of features, unavailable in its analogue (MariaDB features might be unavailable in MySQL, and vice versa). In this presentation, we’ll cover these new features and provide recommendations re: which application will work best on which DBMS.

AI holds great promise to advance technology, increase efficiency and introduce revolutionary tools into our lives. However, AI and other data analytics systems have often been implemented without proper safeguards, and have exacerbated certain social ills. In recognition of the potential risks, the Personal Data Protection Commission (PDPC), a government agency, published “A Proposed Model AI Governance Framework” in January 2019. The Model Framework introduced some safeguards for the development and deployment of AI, and encouraged companies to adopt those safeguards in their internal governance. The PDPC called on the public to provide feedback, so as to improve upon the current proposed framework.Answering the call for feedback, DataKind SG in partnership with Effective Altruism SG have prepared a detailed paragraph-by-paragraph response to the model framework. https://npwg-ai-sg.github.io/

In Japan, open data of crime damage information and disaster information is disclosed. Data processing and analysis can be facilitated by the development of Python.This time, LINEBot was developed in Python to estimate theft using open data of bicycle theft damage information released by Nagano Prefecture in Japan. In order to quantify how similar the “bicycle theft data” based on open data is to the “user data” of LINE users, I have calculated the “Maharanobis distance” and implemented an estimation function.   I will talk about pre-processing of open data, implementation of estimation function by Mahalanobis distance, and use of LINEMessagingAPI. (LINEBot is available with LINE ID: @ 377mjuys)My bot is open source, here is a link to the open source code. [https://github.com/kawakeee/open-nagano-zitensya]

Mysterium Network is building a distributed and permissionless VPN network. In our network providers are paid directly by consumers for providing VPN services.  

Payments are a crucial element of Mysterium Network. As such, we needed to design a solution which was capable of meeting real-world requirements of scalability and affordability. This system also had to comply with the ethos of decentralised ecosystems. These are two opposing forces, with no solution fit for Mysterium Network readily available in the market.

The architecture of our payments system is a fusion of research and experimentation with existing Layer 2 solutions. But none of these fit our particular use case. 

Here were the main requirements of our proposed system:

1. High throughput – the network’s ability to handle frequent and small payments (eventually thousands per second)
2. Support for our native utility token, MYST
3. Anonymity while also being secure, such as through the use of identity registration and reputation system
4. Great user experience, removing as much complexity as possible for the end-user.

We also had to consider that consumers won’t pay a large amount up-front and the service providers (nodes) are unlikely to offer their services without prepayment.

Our proposed solution fuses together the technologies and methodologies used by other payment solutions, such as State Channels. Find out more about Mysterium Accountant and how payment promises (digital IOUs) will help solve micropayment challenges for decentralised VPN, CDN and SDN networks.

In the modern world of business, data management has become a critical challenge to overcome - in the “red sea”, companies that invested in data management could dramatically reverse their fate from Zero to Hero. In this presentation; we would go through several points on how to overcome the big data challenges:

• Difference between data collection and data management
• What could you do with the data on hand?
• Cost of data management (open source vs commercial products)
• The process of data management (collection of data ingestion of data,pre-processing, queries and value extraction)
• Story telling on your data (visualizations)- Demo on a simple use case / scenario
• Extra topics: monitoring and observability (apps and dashboard)

Cloud is transforming the enterprise and the career path of the DBA. See how. As cloud gains momentum and migrations of applications and databases become more common, the question is often asked: "Does Cloud mean the end of the DBA?". Cloud is likely not the end of the DBA, but instead an agent in unprecedented change. This webcast will cover how Cloud is bringing about that evolution and what today's DBAs must know to be successful in a Cloud-enabled future. The future is here, let's take advantage of it today!

This is story of our journey from SaltStack to Puppet and beyond. This talk will answer following questions:

• why we moved from SaltStack
• why Puppet was chosen
• how to use Puppet OpenSource in painless way
• which orchestration tool to use with Puppet
• what is next

AI Innovation is one of the key pillars in AISG to help accelerate the adoption of AI. Our activities are centred on 3 themes: LearnAI, DoAI and ShareAI.

DoAI provides AI software tools and advisory services to accelerate the adoption of AI by the industry. Amongst our offerings is AI Bricks which are developed by AISG’s engineers and are available as downloadable tools, libraries, and assets for open source software or APIs.

In this talk, Tern Poh will share about AISG's journey of creating open source solutions inspired by real-world projects and common AI requests from the industry. He will also give an overview of the available pre-built solutions, the key technologies powering them, and their potential use cases.

I will be talking about an easily accessible, customizable, and modern, free and open-source time converter (handles time zones) that everyone can use (https://wlwl2.github.io/time-converter/). I will also briefly talk about using Nintendo Joy-Cons to deliver presentations.

Everybody wants to create web apps these days. But is there an easier and efficient way to do it. This talk will not only cover the answer to this question but also how you can make them ultra-fast so that its easy on the creation side and also faster on the usage side.The talk will cover the following things - 

1. Why no to Native apps ?
2. PWA and its advantages
3. Creating PWA in 4 easy steps
4. Launching PWA to Play Store
5. Creating Fast app
6. What is AMP
7.  How AMP works
8. AMP offerings
9. Learning AMP
10. Contributing to AMP.

This session aims to introduce the Programmable Protocol-independent Packet Processors, P4, programming language (www.p4.org). It will start off with a brief overview of the evolution of software defined networking (SDN) and the motivations that led to current programmable data planes. The session will then present the primitives of P4 and it's limitations. Various use cases of P4 will be highlighted. Lastly, a sample P4 program will be discussed in detailed to facilitate further understanding.

SUSI.AI for Home Integration

AI Makerspace is a platform offered by AI Singapore (AISG) to help SMEs and Startups Accelerate the adoption of AI in Singapore. It provides a suite of AI tools, APIs and pre-built solutions (Makerspace Bricks). The Makerspace Bricks are developed by AISG engineers and put up as free downloadable tools, libraries and assets for open source software or APIs. TagUI is one such Makerspace Brick for robotic process automation(RPA). In this workshop, Yi Sheng will guide participants through the basic usage of TagUI.

• Using TagUI in common web scraping tasks
• Using TagUI in common desktop interactions

In 1996 Brian E. Carpenter of IAB and Fred Baker of IETF wrote a
co-statement on cryptographic technology and the internet. This RFC
wasn't a request for a technical standard, it was a statement on their
concerns about Governments trying to restrict or interfere with
cryptography. They felt that there was a need to offer "All Internet
Users an adequate degree of privacy"

Since that time successive governments around the world have sought to
build back doors into encrypted apps and services to access more citizen
and visitor data. As of July 2019, the AG of the United States William
Barr stated: “Some argue that, to achieve at best a slight incremental
improvement in security, it is worth imposing a massive cost on society
in the form of degraded safety,” i.e For security Americans should
accept weakened encryption. The head of the FBI also claimed that
weakened encryption wouldn't break it.

In Australia the metadata retention laws have been abused against
journalists with 58 searches carried out by the AFP. In 2015 ACT police
carried out 115 metadata searches. UK officials have a cavalier
attitude to the EU SIS database which tracks undocumented migrants,
missing people, stolen cars, or suspected criminals. IETF Session 105 mentioned privacy and concerns with the mass collection
of data. While the IAB and IESG were worried about US export controls
on cryptography there is an argument for RFC 1984 to be updated to
include the unnecessary mass collection of data and to use it as a term
for IT professionals, privacy advocates and the public to rally behind. In this talk let's recount a brief history of governments around the
world wanting to weaken encryption as RFC 1984 warned us about.

We live in a time where citizens put data into commercial, healthcare
and Government systems to access services, some services are only
accessible online. From CCTV to Facebook people have little
understanding of why mass collection of data is dangerous. There is
little scrutiny of who can access that data, from Scotland to the US. Open Surveillance is only a small part of the picture when profiling
citizens. It still counts as personal data, when combined with metadata
and the actual data that people put into social media and services like
ancestor DNA test kits. Businesses who use CCTV have to put up signs
to warn the public they are recording. So called anonymized data still
contains identifiers that can tie to individuals.
Let's talk about Ovid and peacocks. Let's explore how to expand the RFC
to cover recent developments in surveillance capitalism with governments
accessing that data, but not securing it. We need to make it clear
weakened encryption, the mass collection and careless retention of data
isn't acceptable. We need to update and implement RFC 1984.

Closing message