Linux Foundation OpenSSL audit

[mancha <mancha1 () zoho com>]

The Linux Foundation's Core Infratructure Initiative (CII), born during
the aftermath of Heartbleed, has announced five new corporate sponsors
as well as its immediate plans to support the NTP, OpenSSH, and OpenSSL
projects. [1]

I applaud both the Linux Foundation and all its corporate sponsors for
their inspiring leadership and vision.

In the case of OpenSSL, some of the funding will be channeled through
the Open Crypto Audit Project (OCAP) which is being charged with its
security audit.

OCAP can benefit greatly from reviewing OpenBSD's ongoing OpenSSL
audit/review process which was the genesis for LibreSSL. I am cc'ing
OCAP so they might comment on how the LibreSSL effort will factor into
their workplan.

Further, I am aware the OpenBSD Foundation has reached out to CII to
request LibreSSL funding support. Given OpenBSD's solid track record and
the leadership and initiative they've demonstrated through LibreSSL, I
would appreciate if CII (also cc'd) would comment on that outstanding
request.

Many thanks.

--mancha

[1] http://www.linuxfoundation.org/news-media/announcements/2014/05/core-infrastructure-initiative-announces-new-backers

Attachment: _bin
Description: