September 14-15, 2017 - Los Angeles, CA
Click Here For Information & Registration
Thursday, September 14 • 2:30pm - 3:15pm
CII Best Practices Badge, 1.5 Years Later - David Wheeler, IDA

Sign up or log in to save this to your schedule and see who's attending!

Feedback form is now closed.
OSS is critical in the world today. However, OSS projects do not always follow best practices, leading to dangerous security vulnerabilities. To address this, in 2016 the Core Infrastructure Initiative (CII) established a "best practices badge" program, which created "best practices" criteria and a process so OSS projects could get a badge for meeting these criteria. This incentivizes projects to apply best practices and helps users identify projects using best practices.

This presentation will discuss the current status of the badging program. It will highlight recent changes, including the new criteria for the new “higher-level” silver and gold badges. It will also discuss the projects with badges, security improvements projects have made to get the badge, some interesting ways that projects have met the criteria, and the criteria most missed today.


David A. Wheeler

Research Staff Member, IDA
Dr. David A. Wheeler is an expert on developing secure software and on open source software (OSS) development. He wrote the book "Secure Programming HOWTO" on how to develop secure software, and his work on countering malicious tools ("Fully Countering Trusting Trust through Diverse... Read More →

Thursday September 14, 2017 2:30pm - 3:15pm
Gold 4

Attendees (19)