Skip to main content
search
Category

security

Mar 31
Love0

Webinar: An Overview of SPDX 3.0

By automation, community, licensing, News, security, standards, Webinar

This webinar features Alexios Zavras, Chief Open Source Compliance Officer at Intel Corporation and a long-term friend and collaborator around the OpenChain Project. This time the topic was SPDX 3.0, a significant generational update to SPDX, a sister standard to OpenChain ISO/IEC 5230 and OpenChain ISO/IEC DIS 18974.

SPDX is a Software Bill of Materials (SBOM) specification, so it operates one layer down from the fundamental processes outlined by OpenChain’s standards, and it provides an excellent way to meet our requirements for an SBOM to be used by companies. The second generation of SPDX has been an ISO/IEC standard for two years as ISO/IEC 5962. The third generation shows interesting promise as a way to manage license compliance, security and more.

Watch The Webinar

Check Out The Slides

Check Out The Rest Of Our Webinars

This is OpenChain Webinar #50, released on 2023-04-31.

Mar 11
Love0

Webinar: Security Today

By community, Featured, News, security, Webinar

This webinar provided a snapshot of developments around open source and security topics, an increasingly important part of open source governance and management. While not intended to cover all the issues seen, it was designed to give a strategic overview to interested parties.

Check Out The Rest Of Our Webinars

This is OpenChain Webinar #38, released on 2022-03-11.

Aug 03
Love0

Webinar: Securing the Development & Supply Chain of Open Source Software

By community, Featured, News, security, Webinar

This webinar explored the topic of how security can be addressed in the context of open source development and deployment. While critical to the long-term management of open source, it has been a historically under-developed area of resource allocation.

Check Out The Rest Of Our Webinars

This is OpenChain Webinar #28, released on 2021-08-03.

Apr 21
Love0

Webinar: Linux License Clean-Up Disorder Dispelled + ISO 5230 in the Context of Security

By community, Featured, legal, licensing, News, security, standards, Webinar

This webinar unpacked the complexity and solutions for addressing licensing across a large code-base like the Linux Kernel, and it explained how ISO 5230 has been applied to the security domain by some parties in the supply chain.

Check Out The Rest Of Our Webinars

This is OpenChain Webinar #22, released on 2021-04-21.

Sep 11
Love0

Webinar: Open Source Issues Remediation + Community Bridge and SPDX Online Tools + CII Best Practices

By automation, Featured, legal, licensing, News, security, standards, Webinar

In our biggest webinar to date, Jari Koivisto talked about Open Source Issues Remediation, Gary O’Neall talked about Community Bridge and SPDX Online Tools and David Wheeler talked about CII Best Practices (the project equivalent of the OpenChain standard). Check out the full recording and the slides below.

Check Out All The Slides

Check Out The Rest Of Our Webinars

This is OpenChain Webinar #11, released on 2020-09-11.

Close Menu