August 16, 2024 at 06:54AM
The federal government is investing $11 million in the Open-Source Software Prevalence Initiative (OSSPI) to understand and enhance the security of open-source software used in critical infrastructure. National Cyber Director Hary Coker announced the initiative, aiming to strengthen national cybersecurity and collaborate with the cybersecurity community. The initiative aligns with the findings of the Open-Source Software Security Initiative (OS3I) report.
From the meeting notes, it is clear that the federal government is investing $11 million in the Open-Source Software Prevalence Initiative (OSSPI) to better understand and secure open-source software used in critical infrastructure such as healthcare, transportation, and energy production. This initiative was announced by the National Cyber Director Hary Coker at the DEF CON conference in Las Vegas and is funded by the 2021 Bipartisan Infrastructure Law. The goal is to strengthen national cybersecurity by learning how open-source software is utilized in critical infrastructure. The government is seeking the involvement of the cybersecurity community and has released 12 recommendations from a recent Request for Information in its Open-Source Software Security Initiative (OS3I), highlighting the need to advance research and development, secure package repositories, and establish closer ties between the government and open-source communities.