OpenSSF GM talks funding, legal software supply chain issues | TechTarget
Brian Behlendorf, OpenSSF GM, is laying out plans to fund open source supply chain security in a slowing economy and speak out against the EU's Cyber Resilience Act. Read this blog for insight.
What is the current funding status of OpenSSF?
As of now, OpenSSF has raised $7.5 million for its Alpha-Omega initiative last year, with hopes to match that amount this year. The foundation initially aimed for a funding goal of $150 million, but has not yet reached that target. While there were pledges of $30 million from existing members, the focus is now on ensuring continued resources amidst economic challenges.
What are the implications of the EU Cyber Resilience Act?
OpenSSF is concerned that the Cyber Resilience Act could impose burdensome obligations on open source software publishers, particularly those involved in critical infrastructure. The proposed policy would require compliance measures that could hinder the publication of open source code, potentially stifling innovation and collaboration within the community.
How does OpenSSF plan to enhance software supply chain security?
OpenSSF is focusing on two main areas: funding security teams at major open source foundations and establishing a systematic approach to identify and address vulnerabilities in top open source projects. This includes making grants to enhance security processes and creating a team to scan for vulnerabilities across thousands of projects, aiming for a proactive rather than reactive approach to security.
OpenSSF GM talks funding, legal software supply chain issues | TechTarget
published by Hixardt Technologies, Inc.
Hixardt is a professional IT managed cybersecurity service provider, offering cloud managed services, virtualization, compliance, and support desk services. We specialize in email threat intervention, network intrusion protection, backup solutions, disaster recovery options, and compliance services to meet the demanding needs of commercial businesses, non-profit organizations, and state, local and federal government offices.
Today’s organizations need to ensure their productivity, profitability, and continuity. As a strategic technology provider, Hixardt is as involved as you need us to be. With our best-in-class portfolio of products and services, we help you secure and grow your digital environment—from system architecture, to management, to optimization, and to protection and recovery.
We are Hixardt. We make IT Happen.
Sign in with LinkedIn