Explore the intersection of open source software and security in this DevConf.CZ 2023 conference talk. Delve into the impact of open source technology across various industries and address common concerns regarding its security, particularly in high-profile sectors like defense and healthcare. Examine recent government initiatives, such as the U.S. Executive Order on Improving the Nation's Cybersecurity and OpenSSF, aimed at enhancing open source security. Learn about best practices for both developers and consumers to ensure secure development and consumption of open source software. Investigate the concept of a secure open source supply chain and its feasibility. Gain insights into Red Hat's secure development initiative and its potential industry-wide applications. This 35-minute presentation by Huzaifa Sidhpurwala offers a comprehensive look at the opportunities and challenges in open source security.
Overview
Syllabus
Open source security: Opportunity or oxymoron? - DevConf.CZ 2023
Taught by
DevConf