A naukri.com initiative
Siliconangle
7d
29
Image Credit: Siliconangle
Mastering open-source software security in a cloud-native era
- Open-source software has become an essential tool for companies but management of open-source software supply chains needs to be proactive in its approach to potential cybersecurity risks, rather than just compliance issues, according to the co-founder and CEO of solution platform Kosai. Around 84% of the entire enterprise code base is open source, which means a number of vulnerabilities put it at risk from cyber attacks. Stagnant software is another issue for enterprise applications; outdated open source or abandonware is used by 91% of them, with no support currently provided. A belief in 'shift left', embedding security testing earlier in software development, offers less management of risk and encourages innovation according to Kosai.
- The management of open-source software supply chains is vital to ensure cybersecurity risks are not the only things being managed. Open-source software now forms 84% of the enterprise code base.
- Businesses are more reliant on open-source software than ever before but management of supply chains is becoming increasingly important and needs to be proactive in terms of cybersecurity risks.
- Developers are under increasing pressure to deliver quickly and 'shift left' becomes an issue, hence it is seen as important to remain creative in terms of tackling management of open-source software.
- Open-source software is now crucial to helping organisations innovate while at the same time minimising cybersecurity risk.
- Open-source software is introduced to launch innovation projects in the enterprise environment, but those firms take huge risks because they often use outdated open-source components. Organisations must establish an open-source program office to ensure the long-term viability of the software they rely on.
- Preventing exploit of vulnerabilities in open-source software will require new tools and strategies, including developers who prioritise risk management alongside innovation, according to CEO of platform designer and operator Kosai.
- Open-source adoption is still growing rapidly, and corporate software supply chains are deteriorating in terms of safety. As a consequence, security management of open-source software has become essential to maintaining operational efficiencies.
- Kosai CEO Jonathan Simkins said that while traditional methods of securing the enterprise, as licensing and legal compliance, remain relevant, security has become less about ticking boxes and more about proactive risk aversion.
- Kosai has established a platform to give open-source software maintainers the means to monetise their work while giving software developers confidence in its security.
Read Full Article
1 Like
For uninterrupted reading, download the app