September 14-15, 2017 - Los Angeles, CA
Click Here For Information & Registration
Thursday, September 14 • 2:30pm - 3:15pm
CII Best Practices Badge, 1.5 Years Later - David Wheeler, IDA

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Feedback form is now closed.
OSS is critical in the world today. However, OSS projects do not always follow best practices, leading to dangerous security vulnerabilities. To address this, in 2016 the Core Infrastructure Initiative (CII) established a "best practices badge" program, which created "best practices" criteria and a process so OSS projects could get a badge for meeting these criteria. This incentivizes projects to apply best practices and helps users identify projects using best practices.

This presentation will discuss the current status of the badging program. It will highlight recent changes, including the new criteria for the new “higher-level” silver and gold badges. It will also discuss the projects with badges, security improvements projects have made to get the badge, some interesting ways that projects have met the criteria, and the criteria most missed today.

avatar for David A. Wheeler

David A. Wheeler

Director, Open Source Supply Chain Security, The Linux Foundation
Dr. David A. Wheeler is an expert on developing secure software and on open source software (OSS) development.  He is the Director of Open Source Supply Chain Security at the Linux Foundation, and teaches graduate courses in developing secure software at George Mason University (GMU... Read More →

Thursday September 14, 2017 2:30pm - 3:15pm PDT
Gold 4