Mozilla fund focuses on security auditing of open source code




Mozilla has established the Secure Open Source Fund. The aim of the fund is to pay for security audits for major open source projects. Mozilla hopes to prevent future security incidents as Heart Bleed and Shellshock.

heartbleed SOS Fund is part of the Mozilla Open Source Support- program has initially about half a million dollars. Mozilla hopes more organizations and governments to join the initiative in order to have more money for audits.

With that money Mozilla wants professional security code let scour problems. The organization then will the project managers of the code collaboration to solve problems and to contribute to the disclosure of leaks. Mozilla also wants to pay for verifying that the fixes for bugs actually work.

Mozilla has as a test for the project and carry out three audits, Perl Compatible Regular Expressions, libjpeg-turbo and phpMyAdmin. Here are 43 bugs come to light that a critical vulnerability. Open Source Software has permeated all levels of companies, organizations and infrastructure, but despite this dependence its security is still largely unsolved problem.

However, the SOS Fund is not the first project that seeks to address. The Linux Foundation began in 2014, the Core Infrastructure Initiative in partnership with Cisco, Facebook and Google, to explain open source projects on security issues.


In: A Technology & Gadgets Asked By: [22108 Red Star Level]

Answer this Question

You must be Logged In to post an Answer.

Not a member yet? Sign Up Now »