Open Source and The New Era of Software Liability – Brian Fox, Sonatype
Presented at Open Source In Finance Forum 2023 – NYC
Presented by Brian Fox – Sonatype
Title: Open Source and The New Era of Software Liability
Abstract: As the number of organized attackers whose sole focus is exploiting vulnerabilities in open source ecosystems continues to grow, governments around the world are making secure software development a CEO’s problem. When an automobile defect leads to injury, we expect the auto manufacturer to be liable. Software has so far avoided these sorts of controls, and blanket disclaimers of liability are a cornerstone of modern software licenses. But a slate of recent government regulations, strategy documents, and policies–including the EU Cyber Resilience Act, Executive Order (EO) 14028, and the National Cybersecurity Strategy–indicate this situation might soon change. These proposed regulations are calling for landmark actions to be taken by organizations, with compliance deadlines coming up fast. This talk will present an overview of what’s coming and how to prepare your business for the new era of software liability. We’ll explore global cybersecurity regulatory efforts, share guidance for compliance and maturing your process, and examine what these regulations mean for the future of open source software development.
Find more info about FINOS:
On the web: https://www.finos.org/
Twitter: https://twitter.com/finosfoundation
LinkedIn: https://www.linkedin.com/company/finosfoundation/
OSFF NYC: https://events.linuxfoundation.org/open-source-finance-forum-new-york/
by FINOS
linux foundation
