Skip to main content

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] [List Home]
[open-regulatory-compliance] The CRA is here. Let's build bridges.

Hi folks,

Today I had the pleasure to speak at the Swedish OSPO Network workshop on "Managing implications of the CRA and PLD on Open Source" at Ericsson's (gorgeous!) Göteborg office.

I presented an updated take on my previous talk "The CRA is here. Now what!?" which I shared with you previously.

I've called this new version "The CRA is here. Let's build bridges!"

It captures my recent thinking on the role of stewards and of the attestation program as a bridge between the open source ecosystem and the manufacturers that allows to shift security left while supporting the open source ecosystem in doing so. I'm planning to feed some of this thinking into our white papers on due diligence and security attestations, so I'm very keen to hear your feedback.

You'll find the slide deck attached.

If there's interest, I'm happy to run the presentation as part of our new "CRA Mondays" series. LMK.

Best,

--tobie

---
Tobie Langel
Tech Lead ORC WG, Eclipse Foundation
Principal, UnlockOpen

Attachment: orcwg-the-cra-is-here-lets-build-bridges.pdf
Description: Adobe PDF document


Back to the top