Videos: Webinars  – Industrial Open Source Network

In June Swedsoft’s Industrial Open Source Network held two webinars on the theme of the license and security aspects of the intake of Open Source software.

When bringing in Open Source Software there is always that lingering concern about the licenses, what kind of legal risks could be brought in with the intake, and about the software constructs themselves, which security flaws and vulnerabilities could be built in when incorporating Open Source software with your solution. Thankfully, there are ways and means to reduce and handle those potential risks which were presented in two webinars by members of the Industrial Open Sorce Network.

On June 3rd the focus was on Linux Foundation’s OpenChain Project which defines the key requirements of a quality Open Source Compliance Program.

During the webinar Shane Coughlan, OpenChain Project, held an introduction on OpenChain followed by Jonas Öberg from Scania who talked about how OpenChain shaped Scania’s Open Source Program. Carl-Eric Mols, Addalot held a presentation about experiences form Sony Mobile.

A week later, on Wednesday June 10th, the focus was shifted to SW Security and Vulnerabilities aspects and how to handle those at the point of an intake and/or a continuous integration inflow of Open Source.

Martin Hell, LTH and Debricked gave a brief overview of some software security maturity models and discuss how the HAVOSS model can be used for open source software security. Stefan Andersson, Axis, talked about security at Axis and their thoughts on open source security. The webinar ended with a presentation from Emil Wåreus, Debricked about the ways Debricked tackle some specific challenges with community generated vulnerabilities using machine learning, as well as a short introduction to dependency vulnerability management.

The webinars both endend with a Q&A moderated by Nicolas Martin-Vivaldi, Addalot who is the coordinator for the Industrial Open Source Network.

You can see the webinars at Swedsoft’s YouTube-channel.


News


STEW last days to register_person writing code screens _ data for software development

STEW – last days to register

Friday January 15th is the last day to register for STEW 2020, which will be organized on January 21st –

2020 – a different but eventful year

We now take the opportunity to summarize the year which, despite being different than planned, has been full of activities!

Engage in discussions and listen to inspiring presentations

From the start in 2012, the focus for STEW has been on creating exchange between academia, industry and the public sector. The

Newsletter December 2020

In the last newsletter for the year, we will tell you little about what is going on in Swedsoft, but