Open Source Supply Chains and Consumption Risk

DevSecCon Boston 2018 speaker
10 Sep 2018
13:40 - 14:20
Guastavino Room

Open Source Supply Chains and Consumption Risk

Open source development is the new normal for software development, but legacy paradigms and point in time decisions create security risks. In this talk, I’ll cover some of the lessons observed from Black Duck’s 2018 Open Source Security and Risk Analysis report. Topics covered will include:

  • How publicity of disclosures impact patch success;
  • Development velocity and the use of vulnerable components;
  • An industry view on software risks
Get ticket

This website uses cookies to ensure you get the best experience on our website More info

The cookie settings on this website are set to "Got it!" to give you the best browsing experience possible. If you continue to use this website without changing your cookie settings or you click "Accept" below then you are consenting to this.