oss-sec mailing list archives
Linux Foundation OpenSSL audit
From: mancha <mancha1 () zoho com>
Date: Fri, 30 May 2014 03:20:29 +0000
The Linux Foundation's Core Infratructure Initiative (CII), born during the aftermath of Heartbleed, has announced five new corporate sponsors as well as its immediate plans to support the NTP, OpenSSH, and OpenSSL projects. [1] I applaud both the Linux Foundation and all its corporate sponsors for their inspiring leadership and vision. In the case of OpenSSL, some of the funding will be channeled through the Open Crypto Audit Project (OCAP) which is being charged with its security audit. OCAP can benefit greatly from reviewing OpenBSD's ongoing OpenSSL audit/review process which was the genesis for LibreSSL. I am cc'ing OCAP so they might comment on how the LibreSSL effort will factor into their workplan. Further, I am aware the OpenBSD Foundation has reached out to CII to request LibreSSL funding support. Given OpenBSD's solid track record and the leadership and initiative they've demonstrated through LibreSSL, I would appreciate if CII (also cc'd) would comment on that outstanding request. Many thanks. --mancha [1] http://www.linuxfoundation.org/news-media/announcements/2014/05/core-infrastructure-initiative-announces-new-backers
Attachment:
_bin
Description:
Current thread:
- Linux Foundation OpenSSL audit mancha (May 29)
- Re: Linux Foundation OpenSSL audit mancha (Jun 02)