Secure software dependency management everywhere with Nix
Tom Berek, Farid Zakaria
DEF CON 33 (backfill) · Day 1 · Main Stage
In this groundbreaking DEF CON talk, "Secure software dependency management everywhere with Nix," Tom Berek, Farid Zakaria, and Morgan Jones introduce the Nix ecosystem as a revolutionary approach to software packaging, deployment, and security. Nix, encompassing a package manager, a declarative language, a vast package set (Nixpkgs), and an operating system (NixOS), aims to "rebuild the world" of software distribution from the ground up. The speakers argue that Nix provides fundamental primitives for atomic, reproducible, and auditable software environments, directly addressing long-standing challenges in supply chain security and system reliability.
AI review
A competent Nix evangelism session that would be more at home at NixCon or a CNCF meetup than DEF CON. The security framing is largely retrofitted onto a general-purpose packaging talk — 'SBOMs by construction' is the only hook with real security substance, and even that doesn't go deep enough to earn a DEF CON slot.