Skip to main content
2023 Security Congress Main banner
 
Icon Legend
Additional Fee Required
Additional Fee Required
Pre-Registration Required
Pre-Registration Required
Online & Virtual
Online & Virtual
Onsite Only
Onsite Only
Earn CPE Credits
Earn CPE Credits
Livestreamed Session
Livestreamed Session
Included in Guest Pass
Included in Guest Pass
Invite Only
Invite Only
Session Recorded
Session Recorded
Student Experience
Student Experience
Back

Onsite and Virtual

Software Security

Is Open Source Software Too Open to Vulnerabilities?

Thursday, October 26, 2023
11:05am – 12:05pm CT
Location: Delta Ballroom D
CPE Credits 1
Online & Virtual Earn CPE Credits Livestreamed Session Session Recorded
Separate facts from fears for a comprehensive understanding of the strengths and weaknesses of open source software (OSS). The Log4J issue grew awareness and raised concerns about the cybersecurity risks associated with OSS. Not only was the software widely adopted, it had worldwide code contributors and no centralized support. C-level executives were concerned to learn there wasn’t a single source to hold contractually responsible. Cybersecurity professionals realized that Log4J exposed weaknesses related to the lack of rapid and complete understanding of all underlying software package dependencies. In this session, you’ll learn to navigate the real-world complexities in identifying and tracking the associated risks of OSS.

Learning Objectives:

  • Discuss the history of open source software, including who contributes to it and where the code is today.
  • Discover and control the use of open source software in your organization.
  • Assess the real-world complexities in identifying and tracking the pedigree and associated risks of open source software.