Loading…
May 10-12, 2023
Vancouver, British Columbia, Canada + Virtual
View More Details & Registration
Note: The schedule is subject to change.

The Sched app allows you to build your schedule but is not a substitute for your event registration. You must be registered for Open Source Summit North America 2023 to participate in the sessions. If you have not registered but would like to join us, please go to the event registration page to purchase a registration.

This schedule is automatically displayed in Pacific Daylight Time (UTC/GMT -8). To see the schedule in your preferred timezone, please select from the drop-down menu to the right, above "Filter by Date."

IMPORTANT NOTE: Timing of sessions and room locations are subject to change.

Back To Schedule
Friday, May 12 • 3:10pm - 3:50pm
Implementing the OpenSSF Best Practices Badges & Scorecards Into Your Project - CRob, Intel & David A. Wheeler, The Linux Foundation

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Tweet Share
Feedback form is now closed.
One of the key objectives of the The Open Source Security Foundation (OpenSSF) is to help improve the security of the software that is being developed. To do that requires simple tools that can easily be integrated into developer workflows, and requires documentation and guidance on how to do things with security in mind throughout the code's lifecycle. and experts that can coach, mentor, and work with software engineers to help improve the security of their environments, coding practices, and supply chains. This talk will showcase the work of the OpenSSF through the lens of the software developer, illustrating tangible actions the foundation is taking to educate, inform, and encourage developers to adopt and use excellent security practices. We will focus on the OpenSSF Best Practices badge and Scorecards, with specific tips on common problems and how to address them in your project, as well as countering some misunderstandings. Attendees will come away with an understanding of how to work towards achieving the prestigious OpenSSF Best Practices Badge as well as how to integrate the OSSF Scorecards project to report on the security posture of their project.
Speakers
avatar for Christopher (CRob) Robinson

Christopher (CRob) Robinson

Director of Security Communications, Intel
Christopher Robinson (aka CRob) is Director of Security Communications at Intel Product Assurance and Security CRob is a 42nd level Dungeon Master and a 25th level Securityologist. CRob has been involved in upstream open source security for a decade, and spent 6 years helping lead... Read More →
avatar for David A. Wheeler

David A. Wheeler

Director of Open Source Supply Chain Security, Linux Foundation
Dr. David A. Wheeler is an expert on open source software (OSS) and on developing secure software. His works on developing secure software include "Secure Programming HOWTO", the Open Source Security Foundation (OpenSSF) Secure Software Development Fundamentals Courses, and "Fully... Read More →

OSS NA 2023 Implementing the OSSF Best Practices Badges & Scorecards into your project pdf
Friday May 12, 2023 3:10pm - 3:50pm PDT
208-209 (Level 2)
  Open Source Leadership Summit, Best Practices in Open Source Development / Lessons Learned