all InfoSec news
How CISA can improve OSS security
Malware Analysis, News and Indicators - Latest topics malware.news
By Jim Miller
The US government recently issued a request for information (RFI) about open-source software (OSS) security. In this blog post, we will present a summary of our response and proposed solutions. Some of our solutions include rewriting widely used legacy code in memory safe languages such as Rust, funding OSS solutions to improve compliance, sponsoring research and development of vulnerability tracking and analysis tools, and educating developers on how to reduce attack surfaces and manage complex features.
Background …
blog blog post cisa code funding government information languages legacy memory memory safe memory safe languages miller open-source software oss request response rfi rust safe security software solutions