Open security

Open security

Open security is an initiative to approach application security challenges using open source philosophies and methodologies. Traditional application security is based on the premise that any application or service (whether it is malware or desirable) relies on security through obscurity.[1]

On the developer side, legitimate software and service providers can have independent verification and testing of their source code.[2] On the information technology side, companies can aggregate common threats, patterns, and security solutions to a variety of security issues.[3][4]

See also

  • Kerckhoffs's Principle
  • OASIS (organization) (Organization for the Advancement of Structured Information Standards)
  • OWASP (Open Web Application Security Project)
  • Open government
  • Homeland Open Security Technology

References

  1. ^ Raymond, Eric S (2004-05-17). "If Cisco ignored Kerckhoffs's Law, users will pay the price". LWN.net. http://lwn.net/Articles/85958/. Retrieved 2011-06-21. 
  2. ^ "Open Security Foundation". Open Security Foundation. http://www.opensecurityfoundation.org/. Retrieved 2011-06-21. 
  3. ^ "Open Web Application Security Project". https://www.owasp.org/index.php/Main_Page. Retrieved 2011-06-21. 
  4. ^ "Why have OSA?". OSA. http://www.opensecurityarchitecture.org/cms/en/about/why-have-osa. Retrieved 2011-06-21. 

Wikimedia Foundation. 2010.

Игры ⚽ Нужен реферат?

Look at other dictionaries:

  • Open Source Software Institute — Type Nonprofit Industry Open source software Founded 2000 Founder(s) John Weathersby Headquarters Hattiesburg, MS …   Wikipedia

  • Open source (disambiguation) — Open source denotes that a product includes permission to use its source code, design documents, or content (see open source and open content the latter deals with non software deliverables or where the distinction between source code and other… …   Wikipedia

  • Security Architecture — Security provided by IT Systems can be defined as the IT system’s ability to being able to protect confidentiality and integrity of processed data, as well as to be able to provide availability of the system and data.“IT Architecture” may be… …   Wikipedia

  • Open source — This article is about the production and development model. For its application to software, see Open source software. For the form of intelligence collection management, see Open source intelligence. For other uses, see Open source… …   Wikipedia

  • Open source software security — is the measure of assurance or guarantee in the freedom from danger and risk inherent to an open source software system. Contents 1 The debate 1.1 Benefits of open source security 1.2 Drawbacks of open source security …   Wikipedia

  • Open source software — (OSS) began as a marketing campaign for free software [cite web archiveurl=http://web.archive.org/web/20060423094434/www.opensource.org/advocacy/faq.html title=Frequently Asked Questions |publisher=Open Source Initiative archivedate=2006 04 23… …   Wikipedia

  • Open-source intelligence — (OSINT) is a form of intelligence collection management that involves finding, selecting, and acquiring information from publicly available sources and analyzing it to produce actionable intelligence. In the intelligence community (IC), the term… …   Wikipedia

  • Security Assertion Markup Language — (SAML) is an XML based standard for exchanging authentication and authorization data between security domains, that is, between an identity provider (a producer of assertions) and a service provider (a consumer of assertions). SAML is a product… …   Wikipedia

  • Open Systems AG — Type Private Industry ICT security services Founded Basel, Switzerland October 25, 1990 (1990 10 25) Founder(s) Florian Gutzwiller …   Wikipedia

  • Open Diary — URL OpenDiary.com Commercial? Yes Type of site Blog Social Network Owner Open …   Wikipedia

Share the article and excerpts

Direct link
Do a right-click on the link above
and select “Copy Link”