Commentary on architecture-based and model-based approach for developing the security and the assurance for a generic OpenSource Supply Chain

OpenChain-Project / Security-Assurance-Specification

Other

21 stars 7 forks source link

Commentary on architecture-based and model-based approach for developing the security and the assurance for a generic OpenSource Supply Chain #7

Closed shanecoughlan closed 2 years ago

shanecoughlan commented 2 years ago

Document submitted by: Expert Ricardo Villalón Fonseca INTECO – Costa Rica National Committee University of Costa Rica – CITIC/ECCI

Call for comments on OpenChain Security Assurance Reference_Villalon Fonseca, Ricardo Mr.docx Call for comments on OpenChain Security Assurance Reference_Villalon Fonseca, Ricardo Mr.docx

shanecoughlan commented 2 years ago

Out of scope - framing document for considering approaches to security management in open source. We already did our framing via our pre-existing ISO/IEC standard and by industry consultation.