Sign up to save your podcasts
Or
Share Impact of New US National Cybersecurity Strategy on Organizations Building With OSS - Donald Fischer - ESW #312
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
Impact of New US National Cybersecurity Strategy on Organizations Building With OSS - Donald Fischer - ESW #312
Overall increase in government regulations. EU as well. Shift in liability from consumers to organizations.How to take advantage of safe harbor protections and reduce organizational risk and liability. NIST SSD Framework - how do you understand the security practices of the open source packages you use in your applications and ensure they are following the NIST practices (so you can take full advantage of safe harbor protections and reduce potential liability). Creating a network of open source maintainers, documenting and attesting to their security practices, is a solution. Work with the maintainers to be able to provide documentation. How to get more involved with development in open source security. What is the mechanism?
Segment Resources:
https://tidelift.com/government-open-source-cybersecurity-resources
https://blog.tidelift.com/webinar-how-the-nist-secure-software-development-framework-impacts-open-source-software
https://blog.tidelift.com/webinar-recap-what-the-new-u.s.-national-cybersecurity-strategy-means-for-open-source-software
https://blog.tidelift.com/tidelift-advisory-impact-of-new-u.s.-national-cybersecurity-strategy-on-organizations-building-apps-with-open-source-software
Visit https://www.securityweekly.com/esw for all the latest episodes!
Show Notes: https://securityweekly.com/esw312
View all episodes
By Security Weekly Productions
4.7
33 ratings
Overall increase in government regulations. EU as well. Shift in liability from consumers to organizations.How to take advantage of safe harbor protections and reduce organizational risk and liability. NIST SSD Framework - how do you understand the security practices of the open source packages you use in your applications and ensure they are following the NIST practices (so you can take full advantage of safe harbor protections and reduce potential liability). Creating a network of open source maintainers, documenting and attesting to their security practices, is a solution. Work with the maintainers to be able to provide documentation. How to get more involved with development in open source security. What is the mechanism?
Segment Resources:
https://tidelift.com/government-open-source-cybersecurity-resources
https://blog.tidelift.com/webinar-how-the-nist-secure-software-development-framework-impacts-open-source-software
https://blog.tidelift.com/webinar-recap-what-the-new-u.s.-national-cybersecurity-strategy-means-for-open-source-software
https://blog.tidelift.com/tidelift-advisory-impact-of-new-u.s.-national-cybersecurity-strategy-on-organizations-building-apps-with-open-source-software
Visit https://www.securityweekly.com/esw for all the latest episodes!
Show Notes: https://securityweekly.com/esw312
More shows like Enterprise Security Weekly (Video)
View all
SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)
626 Listeners
Defensive Security Podcast - Malware, Hacking, Cyber Security & Infosec
366 Listeners
Grumpy Old Geeks
6,020 Listeners
CyberWire Daily
1,009 Listeners
Security Weekly News (Video)
5 Listeners
Smashing Security
312 Listeners
Up First from NPR
56,221 Listeners
Cybersecurity Today
166 Listeners
![Talkin' About [Infosec] News, Powered by Black Hills Information Security by Black Hills Information Security](https://podcast-api-images.s3.amazonaws.com/corona/show/516141/logo_300x300.jpeg){kind=logo}
Talkin' About [Infosec] News, Powered by Black Hills Information Security
91 Listeners
Defense in Depth
74 Listeners
Cloud Security Podcast
58 Listeners
Cyber Security Headlines
127 Listeners