How To Be A Responsible Consumer Of Open Source Software
Aeva Black
As global digital threats evolve, the interdependence between open source software communities and commercial software vendors, and the interplay between open source stakeholders and global governments, have become increasingly vital. Recent policy actions in both the US and EU have focused on this intersection, and the formation of government Open Source Program Offices (OSPOs) shows the indispensable role of open source software in national infrastructure and national security.
Recognizing that many community-driven open source software projects are critical to the digital supply chain, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) has recently taken several actions towards supporting the secure development, distribution, and utilization of open source software.
Attendees of this talk will learn from CISA’s Section Chief for Open Source Security about recent policy changes in both the US and the EU, gain an understanding of common characteristics of open source communities that are resilient to threats, and learn how to apply a guideline — developed in partnership between several US agencies and private sector entities — for the responsible and sustainable usage of open source software in the enterprise.
Presented by:
Aeva Black
Section Chief, Open Source Security, CISA
Aeva Black is an open source hacker, advocate, and international public speaker with over 20 years of experience building digital infrastructure and leading open source projects at technology companies. She is the Section Chief for Open Source Security at the U.S. Cybersecurity and Infrastructure Security Agency, and serves as the Secretary of the Board of the Open Source Initiative. Aeva spends her spare time riding motorcycles and supporting her local LGBTQ+ community.