vimarsana.com

Page 21 - Source Security Foundation Open News Today : Breaking News, Live Updates & Top Stories | Vimarsana

The Open Source Software Security Mobilization Plan: Takeaways for security leaders

The plan from the Linux Foundation and OpenSSF presents three goals to improve open-source software security during development and more effectively address vulnerabilities.

Sboms saasbomsWhite software security summitSource software security mobilization planOpenssf open source security incident response teamChain levels for software artifactsSoftware development frameworkSource security foundation openIts enhancing software supply chain securityUs national institute of standardsLinux foundationOpenssf secure software fundamentalsOpen source security foundationOpen source software security mobilizationJoe bidenCybersecurity executive orderSoftware supply chain

Google Cloud to Offer Security-Vetted Open Source Software

Recent vulnerabilities such as Log4j2 have called attention to the challenges of securing open-source software, which is used widely by tech companies and other industry enterprises. Google will release the security-vetted versions of open source software packages that it runs itself for industry and government use.

White houseDistrict of columbiaUnited statesMandy changPaul cormierRed hatGlobal affairs kent walkerSource security foundation openSoftware supply chainSource softwareSoftware security foundationLinux foundationGoogle cloudAssured open source softwareSoftware supply chain reportEnterprise open source report

Log4j Vulnerability Puts Enterprise Data Lakes and AI at Risk

The critical Log4j vulnerability just keeps getting worse; now hackers can use it to hijack AI and Big Data systems.

Source security foundation openLinux foundationApache logBig dataTop code debuggingCode securityTop vulnerability management toolsOpen sourceOpen source security foundation

Open Source Security Gets $150M Boost From Industry Heavy Hitters

Maintainers of open source software (OSS) will gain additional security tools for their own projects, while the developers who use OSS and about 97% of software does will gain more data on security.

Stephen chinDan lorencBrian foxBrian behlendorfRed hatSource software security mobilization planLaboratory for innovation science at harvardSource security foundation openLinux foundationDevelopers maintainers to see more toolsOpen source security foundationOpen source software security mobilization planOpen source securityAlpha omega projectInnovation scienceJavascript based node package manager

More money for open source security won t work

Funding pledged to secure open source software is an important start, but creative hackers and a proliferation of targets mean there are no guarantees.

Brian behlendorfSource security foundation openOpen source security foundationOpen source strategy

vimarsana © 2020. All Rights Reserved.