MacMusic  |  PcMusic  |  440 Software  |  440 Forums  |  440TV  |  Zicos
security
Recherche

Fifty Years of Open Source Software Supply Chain Security (Queue)

lundi 7 avril 2025, 21:56 , par LWN.net
ACM Queue looks at
the security problem in the light of a report on Multics security that
was published in 1974.

We are all struggling with a massive shift that has happened in the
past 10 or 20 years in the software industry. For decades, software
reuse was only a lofty goal. Now it's very real. Modern
programming environments such as Go, Node, and Rust have made it
trivial to reuse work by others, but our instincts about
responsible behaviors have not yet adapted to this new reality.

The fact that the 1974 Multics review anticipated many of the
problems we face today is evidence that these problems are
fundamental and have no easy answers. We must work to make
continuous improvements to open source software supply chain
security, making attacks more and more difficult and expensive.
Lire la suite sur LWN.net
https://lwn.net/Articles/1016715/

Voir aussi

security How to keep SMBs open for business – even when the power goes out ComputerWorld15 Apr
queue Browser extensions leave enterprises open to attack BetaNews15 Apr
chain Security updates for Tuesday LWN.net15 Apr
supply Measuring success in dataops, data governance, and data security InfoWorld15 Apr
years Don't delete that mystery empty folder. Windows put it there as a security fix TheRegister15 Apr
open Ubisoft makes Chroma colorblind tool open source for all developers BetaNews15 Apr
source Adam O'Donnell: The Scale of Security SecurityFocus14 Apr
fifty Infocus: WiMax: Just Another Security Challenge? SecurityFocus14 Apr
are National security clown show: Mike Waltz's team used Gmail for military business BoingBoing14 Apr
multics Llama 2 : l’IA « open source » est-elle un moyen d’échapper à la régulation européenne ? 01net14 Apr
work Illumio uses security graphs to identify threats BetaNews14 Apr
reuse Security updates for Monday LWN.net14 Apr
problems Hugging Face Acquires Pollen Robotics to Unleash Open Source AI Robots Wired: Tech.14 Apr
security Official abuse of state security has always been bad, now it's horrifying TheRegister14 Apr
queue Microsoft says that an empty folder created by a system update increases Windows 11 security BetaNews14 Apr
chain DeepSeek’s open source movement InfoWorld14 Apr
supply FreeDOS Celebrates More Than 30 Years of Command Prompts With New Release Slashdot13 Apr
years Homeland Security Email Tells a US Citizen to ‘Immediately’ Self-Deport Wired: Tech.13 Apr
open Libre et open source express: menace cyber, Europe, IA et droit d’auteur, disparition d’une décrypteuse d’Enigma ZDNet.fr12 Apr
source Air Travel Set for Biggest Overhaul in 50 Years With UN-Backed Digital Credentials Slashdot12 Apr
News copyright owned by their original publishers | Copyright © 2004 - 2025 Zicos / 440Network
Date Actuelle
mar. 15 avril - 18:58 CEST