Open Source Security Foundation

The OpenSSF was formed in August 2020 as the successor to the Core Infrastructure Initiative, another Linux Foundation project.{{Cite web |last=Anderson |first=Tim |title=Linux Foundation rolls bunch of overlapping groups into one to tackle growing number of open-source security vulns |url=https://www.theregister.com/2020/08/03/linux_foundation_forms_openssf/ |access-date=2023-05-22 |website=www.theregister.com |language=en}}{{Cite web |title=Home |url=https://www.coreinfrastructure.org/ |access-date=2023-01-20 |website=Core Infrastructure Initiative |language=en-US}}

In October 2021, Brian Behlendorf was announced as the OpenSSF's first full-time general manager.{{Cite web |date=2021-10-13 |title=Tech giants commit $10M annually to Open Source Security Foundation |url=https://venturebeat.com/business/tech-giants-commit-10m-annually-to-open-source-security-foundation/ |access-date=2023-05-22 |website=VentureBeat |language=en-US}} In May 2023, OpenSSF announced Omkhar Arasaratnam as its new general manager, and Behlendorf became CTO of the organization.{{Cite web |last=danwillis |date=2023-05-12 |title=Cross-industry organisation OpenSSF snaps up $5m |url=https://fintech.global/2023/05/12/cross-industry-organisation-openssf-snaps-up-5m/ |access-date=2023-05-22 |website=FinTech Global |language=en-GB}}

The OpenSSF houses various initiatives under its 10 current working groups.{{Cite web |last=Zorz |first=Mirko |date=2024-07-12 |title=Enhancing open source security: Insights from the OpenSSF on addressing key challenges |url=https://www.helpnetsecurity.com/2023/05/18/brian-behlendorf-openssf-open-source-security/ |access-date=2023-05-22 |website=Help Net Security |language=en-US}}{{Cite web |title=OpenSSF Working Groups |url=https://openssf.org/community/openssf-working-groups/ |access-date=2023-05-22 |website=Open Source Security Foundation |language=en-US}} The OpenSSF also houses two projects: the code signing and verification service Sigstore{{Cite web |last=Vizard |first=Mike |date=2022-10-27 |title=Sigstore Code Signing Service Becomes Generally Available |url=https://devops.com/sigstore-code-signing-service-becomes-generally-available/ |access-date=2023-05-22 |website=DevOps.com |language=en-US}} and Alpha-Omega, a large-scale effort to improve software supply chain security.{{Cite web |last=Vaughan-Nichols |first=Steven J. |date=2022-10-06 |title=Alpha-Omega Dishes out Cash to Secure Open Source Projects |url=https://thenewstack.io/alpha-omega-dishes-out-cash-to-secure-open-source-projects/ |access-date=2023-05-22 |website=The New Stack |language=en-US}}

The White House held a meeting on software security with government and private sector stakeholders on January 13, 2022.{{Cite web |last=House |first=The White |date=2022-01-14 |title=Readout of White House Meeting on Software Security |url=https://bidenwhitehouse.archives.gov/briefing-room/statements-releases/2022/01/13/readout-of-white-house-meeting-on-software-security/ |access-date=2023-05-22 |website=The White House |language=en-US}} In May 2022, the OpenSSF hosted a follow-up meeting, the Open Source Software Security Summit II, where participants from industry agreed on a 10-point Open Source Software Security Mobilization Plan, which received $30 million in funding commitments.{{Cite web |last=Vaughan-Nichols |first=Steven J. |date=2023-01-24 |title=OpenSSF Aimed to Stem Open Source Security Problems in 2022 |url=https://thenewstack.io/openssf-aimed-to-stem-open-source-security-problems-in-2022/ |access-date=2023-05-22 |website=The New Stack |language=en-US}}{{Cite web |last=Page |first=Carly |date=2022-05-16 |title=Tech giants pledge $$ to boost open source software security |url=https://techcrunch.com/2022/05/16/white-house-open-source-security/ |access-date=2023-05-22 |website=TechCrunch |language=en-US}} In August 2023, the OpenSSF served as an advisor for DARPA's AI Cyber Challenge (AIxCC), a competition around innovation around AI and cybersecurity.{{Cite web |url=https://www.darpa.mil/news-events/2023-08-09 |access-date=2023-09-27 |website=www.darpa.mil|title=DARPA AI Cyber Challenge Aims to Secure Nation’s Most Critical Software}} In September 2023, the OpenSSF hosted the Secure Open Source Software Summit with the White House, where government agencies and companies discussed security challenges and initiatives around open source software.{{Cite web |last=Vasquez |first=Christian |date=2023-09-13 |title=Washington summit grapples with securing open source software |url=https://cyberscoop.com/openssf-open-source-security-summit/ |access-date=2023-09-27 |website=CyberScoop |language=en-US}}

{{Portal|Free and open-source software}}

• Computer security
• Open Security Foundation

{{Reflist}}

• {{Official website|https://openssf.org/}}
• {{GitHub|ossf|OpenSSF}}

{{Linux Foundation}}

{{FLOSS}}

Category:Free software project foundations based in the United States

Category:Organizations established in 2020