O le a maua e le Linux Foundation le $ 10 miliona faʻatupeina mai le OpenSSF e faʻaleleia atili ai le puipuiga o punaoa

Linux Foundation - CES 2020: Faatomuaga

Talu ai nei ua tatala le Linux Foundation ala mai i se blog post tautinoga a le OpenSSF (Open Source Security Foundation) e faʻatupe le Linux Foundation i le $ 10 miliona, lenei o se vaega o se taumafaiga e faʻaleleia le saogalemu o matala punaoa polokalama.

O loʻo taʻua mai tupe faʻaputuputu e ala i tautupe mai OpenSSF matua kamupani, aofia ai Amazon, Cisco, Dell Technologies, Ericsson, Facebook, Fidelity, GitHub, Google, IBM, Intel, JPMorgan Chase, Microsoft, Morgan Stanley, Oracle, Red Hat, Snyk, ma VMware.

"O lenei pisinisi-lautele tautinoga tali atu i le White House valaʻau e siʻitia le laina faʻavae mo a tatou tuʻufaʻatasiga cybersecurity manuia, faʻapea foi ma le 'totogi atu i luma' e tatala ai sosaiete fesoasoani e fesoasoani ia latou fausia se saogalemu polokalama tatou te fiafia uma i ai. Matou te manuia," fai mai Jim Zemlin, Pule Sili o le Linux Foundation. "Matou te fiafia e faʻapea o Brian Behlendorf's taʻitaʻi ma le poto masani i le fausiaina ma le faʻatumauina o le tele o nuʻu ma galuega faʻatino faʻatinoina i lenei galuega. Ile tele o le tuputupu aʻe ma le salalau solo o polokalame matala i luga ole laiga, o le fausiaina o polokalame ole cybersecurity ma faʻataʻitaʻiga o le fua lena o la tatou galuega tele lea. "

Lenei faʻatupeina o se vaega o le galulue faʻatasi i le va o alamanuia lea e tuʻufaʻatasia le tele o polokalame o polokalame tatala i lalo o le autu e tasi ia faʻailoa ma faʻasaʻosaʻo le vaivai o le cybersecurity i le open source software ma atiaʻe faʻalelei mea faigaluega, aʻoaʻoga, suʻesuʻega, faʻataʻitaʻiga sili, ma amioga faʻalauaʻiteleina.

O se faʻamanatu, OpenSSF galuega taulaʻi luga o vaega e pei o tuʻufaʻatasia vaivai faʻamatalaina, patch tufatufaina, puipuiga meafaigaluega atinae, sili ona lelei lolomiga mo le saogalemu atinaʻe faʻalapotopotoga, faʻailogaina o le saogalemu-fesoʻotaʻi taufaamatau i matala punaoa polokalama, suʻetusi ma Faamalosia galuega, misiona-taua matala punaoa poloketi, fausiaina o mea faigaluega e faʻamaonia ai le faʻailoa o tagata atiae.

  • Kata sikoa saogalemu- O se mea faigaluega otometi atoatoa e iloiloina le tele o taua heuristics ("siaki") fesoʻotaʻi ma le saogalemu polokalama.
  • Pepa Faʻapitoa Sili ona Lelei- Se seti o faʻatinoga sili ona lelei mai le Core Infrastructure Initiative mo le fausiaina o se polokalama e sili atu lona maualuga mautu e maua ai se auala e faatino ai galuega a le OSS e ala i pine o loʻo latou mulimuli iai.
  • Aiaiga Puipuiga: Allstar saunia se seti ma faʻamalosia le puipuia o aiaiga i fale teuoloa poʻo faʻalapotopotoga.
  • Faʻavaa: Polokalama Artifact Tuuina Chain Levels (SLSAs) maua ai se puipuiga faʻavae e faʻateleina tulaga o le polokalama sapalai faʻasologa faʻasologa.
  • Aoaoga- Polokalama fua i luga o le saogalemu polokalama atinaʻe taua taua e aʻoaʻo ai tagata o le alalafaga i auala e atiaʻe saogalemu polokalama
  • Faʻalauiloaina o le Faʻaleagaina: O Se Taʻiala i le Faʻamaopoopoina o Vulnerability Faʻailoa atu mo OSS Poloketi
  • Faʻamatalaga auiliiliga: saili mo polokalame leaga i OSS afifi
  • Siaki saogalemu- Lautele aoina o OSS saogalemu patch
  • Suesuega- Suesuega i luga o matala punaoa polokalama ma faigata mataʻutia vaivaiga faia i le faiga paaga ma le Harvard Laboratory mo Innovation Saienisi (LISH) (mo se faʻataʻitaʻiga, o se uluaʻi tusigaigoa ma le FOSS Contributor Survey)

La O loʻo faʻaauau pea ona fausia e le OpenSSF ni taumafaiga e pei o le Central Infrastructure Initiative ma le Open Source Security Coalition ma tuʻufaʻatasia isi saogalemu-fesoʻotaʻi galuega o loʻo faia e kamupani na auai i le poloketi.

"E leʻi i ai lava se taimi sili atu ona faʻafiafiaina e galue ai i totonu o nofoaga lautele, ma o le polokalame o le puipuiga o le kamupani e leʻi manaʻomia tele le tatou vaʻai," o le tala lea a Brian Behlendorf, o le Pule Sili o le Open Source Security Foundation. “E leai se togafiti faʻataulaitu mo le faʻamautuina o filifili sapalai o polokalame. Suesuega, aʻoaʻoga, sili ona lelei faʻataʻitaʻiga, mea faigaluega, ma le galulue faʻatasi e manaʻomia ai le tuʻufaʻatasia o le mana o le faitau afe o mafaufau faitio i totonu o la tatou pitonuʻu. OpenSSF faʻatupeina maua matou le fonotaga ma punaoa e faia ai lenei galuega.

Mulimuli afai e te fiafia e iloa atili e uiga i ai, oe mafai ona siaki le uluaʻi lolomiga i totonu o le fesoʻotaʻiga lenei


O mataupu o le tusitusiga e tausisi ia tatou mataupu silisili o amio lelei faʻatonu. E lipotia se mea sese kiliki iinei.

Ia avea muamua ma faamatalaga

Tuʻu lau faamatalaga

o le a le lomia lou tuatusi imeli. O nofoaga e manaʻomia e makaina *

*

*

  1. E tali atu mo faʻamatalaga: Miguel Ángel Gatón
  2. Faamoemoega o faʻamatalaga: Pulea le SPAM, faʻamatalaga pulega.
  3. Tulaga faʻatulafonoina: Lau maliega
  4. Fesoʻotaʻiga o faʻamatalaga: O faʻamatalaga o le a le fesoʻotaʻi atu i isi vaega vagana i tulafono faʻatulafonoina.
  5. Teuina o faʻamatalaga: Faʻamaumauga tuʻufaʻatasia e Occentus Networks (EU)
  6. Aia Tatau: I soo se taimi e mafai ai ona e faʻatapulaʻaina, toe maua ma aveʻese au faʻamatalaga.