Google has called on the US government to identify more important open source projects for Internet security and take a more proactive role in security. A. The company published following the White House At Thursday’s summit, Kent Walker, president of global affairs and chief legal officer at Google and Alphabet, said the country needed a public-private partnership that would properly fund and work for the most needed open-source projects.
“For a long time, the software community has been comfortable with the assumption that open source software is generally secure because of its transparency and the idea that ‘many eyes’ were looking to identify and solve problems,” he said. “But in reality, some projects have a lot of eyes on them, others have little or nothing.”
According to Walker, the partnership will look at the impact and importance of a project to determine how important it is for the wider ecosystem. Looking to the future, he says the industry needs new ways to identify software that could create systemic risks for Internet security, down the line.
Walker said more public and private funding is needed, noting that Google is ready to contribute to an organization that matches critical projects that need the most support from volunteers from companies like its own. “Open source software is a connecting tissue for many parts of the online world – it deserves the same focus and financing that we give to our roads and bridges,” he said.
The importance of open source software has been the subject of much discussion since the discovery of Log4Shell vulnerabilities. Log4j is one of the most popular and widely used logging libraries, relying on services such as Steam and iCloud. Security researcher , Who helped stop the spread of WannaCry, called the vulnerability “extremely bad” because it left millions of applications open to attack.
All products recommended by Engadget are selected by our editorial team, independent of our parent company. Some of our stories include affiliate links. If you purchase something through one of these links, we can earn an affiliate commission.