Resources

Steering Committee Final Report

The Steering Committee members met on May 20, 2022, and discussed four main themes related to the security of open-source software: (1) Developers’ Perceptions of Trust & Safety, (2) Memory-Safe Programming Languages, (3) Dependency Management, and (4) Behavioral and Economic Incentives to Secure Open-Source Software. These themes were uncovered by NSF and NIST staff based on position statements submitted by each Committee member.

For each theme, the structured discussion focused on answering the following questions:
        • What is the problem? (Define)
        • What is it we don’t yet understand?
        • Where are the boundaries of the problem? Are there any constants that can’t be changed?
        • Who are the key stakeholders to get involved? Sectors or specific names

As a follow-on to the SC meeting, it was decided to hold a follow-on workshop (i.e., this workshop) with a broader set of participants to seek deeper discussion on these topics.

Below is the final report from the SC meeting.

SteeringCommitteeReport-OSS-Security Download

Additional Resources

The-Phoenix-Checklist Download

OMB_NSF_NIST-Workshop_-Difficulties-and-Opportunities-of-Encouraging-Adoption-of-Memory-Safe-Languages-in-OSS Download

Addressing-the-Software-Dependency-Challenge-in-the-Diverse-OSS-Ecosystem Download

Keynote Download

2022-08-NSF-Behavioral-and-Economic-Incentives-Panel Download

OSSI-Final-Report Download