To tackle the growing threat of attacks on the software supply chain, Google has proposed the Supply chain Levels for Software Artifacts framework, or SLSA which is pronounced "salsa". Can Google's 'salsa' make life harder for supply chain attac...
The recent "back-door" in an open source program has some questioning just how secure open source is, or really can be. "A hole discovered in a Red Hat Linux product has experts debating how secure open-source software is, given . . .
Responding to the rising demand for network security information, and recent influx of security related news, Guardian Digital, Inc. is releasing SecurityNews.org, today. This is the second major website release for Guardian Digital. In February, LinuxSecurity.com, “The Linux Community’s Source . . .
This week more information was revealed on what Secure Computing is going to be doing on Linux for the National Security Agency. The following note, posted by Tom Haigh, CTO for Secure Computing, discusses how the Linux development will . . .