Written by Dave Nyczepir

Tech companies have initially pledged $30 million to fund the 10-point plan for mobilizing open-source software security they developed with White House officials and released Thursday.

Amazon, Ericsson, Google, Intel, Microsoft and VMware provided the money to drive the portfolio approach to hardening the software supply chain that grew out of two open-source software security summits.

The plan comes in response to vulnerabilities and weaknesses in widely deployed open-source software — which makes up 70% to 90% of software stacks — that threaten the security of federal agencies, infrastructure providers, businesses and non-profit organizations.

“It requires a coherent effort because there isn’t one root cause or one approach that addresses them all,” said Brian Behlendorf, general manager of Open Source…



Source link

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.