The secret to breaking down walls, fostering teamwork, and unleashing creativity is having people across the organization who are passionate about embracing open.
Read More at Enable Sysadmin
The secret to breaking down walls, fostering teamwork, and unleashing creativity is having people across the organization who are passionate about embracing open.
Read More at Enable Sysadmin
SAN FRANCISCO, March 1, 2022, The Open Source Security Foundation (OpenSSF) a cross-industry organization hosted at the Linux Foundation that brings together the world’s most important open source security initiatives, today announced 20 new organizations have joined OpenSSF to help identify and fix security vulnerabilities in open source software and develop improved tooling, training, research, best practices, and vulnerability disclosure practices. It is also announcing the latest milestones achieved across a variety of its technical initiatives, all of which underscore the cross-industry momentum that is taking place as a result of increasing awareness in the wake of recent security incidents and since the recent White House Open Source Security Summit and recent Congressional hearings.
“The time is now for this community to make real progress on software security. Since open source is the foundation on which all software is built, the work we do at OpenSSF with contributions from companies and individuals from around the world is fundamental to that progress,” said Brian Behlendorf, executive director at OpenSSF. “We’ve never had more support or focus on building, sustaining, and securing the software that underpins all of our lives, and we’re happy to be the neutral forum where this can happen.”
New Premier Member commitments come from 1Password, Citi, Coinbase, Huawei Technologies, JFrog, and Wipro. New General Member commitments come from Accuknox, Alibaba Cloud, Block, Inc, Blockchain Technology Partners, Catena Cyber, Chainguard, Cloudsmith, DeployHub, MongoDB, NCC Group, ReversingLabs, Spotify, Teleport, and Wingtecher Technology. New Associate Members include MITRE and OpenUK. For a complete review of the OpenSSF member roster, please visit: https://openssf.org/about/members/
These commitments come on the heels of the recent White House Open Source Security Summit, where the Linux Foundation and OpenSSF represented hundreds of its project communities and discussed how best to support software security and open source security posture going forward. This summit was a major milestone in the Linux Foundation’s engagement with the public sector and underscored its position supporting not only the projects it hosts but all of the world’s most critical open source infrastructure.
Since the OpenSSF announced initial commitments in October, the community has continued to advance the OpenSSF mission. Some selected highlights include:
OpenSSF also recently announced the Alpha-Omega Project to improve the security posture of open source software (OSS) through direct engagement of software security experts and automated security testing. It is initially supported by Microsoft and Google with a combined investment of $5 million. The Project improves global OSS supply chain security by working with project maintainers to systematically look for new, as-yet-undiscovered vulnerabilities in open source code and get them fixed. “Alpha” will work with the maintainers of the most critical open source projects to help them identify and fix security vulnerabilities and improve their security posture. “Omega” will identify at least 10,000 widely deployed OSS projects where it can apply automated security analysis, scoring, and remediation guidance to their open source maintainer communities.
Scorecards is an OpenSSF project that helps open source users understand the risks of the dependencies they consume. OpenSSF members GitHub and Google recently announced Scorecards v4, which includes Scorecards GitHub Workflow Action to automate the identification of how changes to a project affected its security. It also includes License Check to detect the presence of a project license and Dangerous-Workflow check to detect dangerous usage of the pull_request_target trigger and risks of script injections in GitHub workflows. The Scorecards project has also increased the scale of scans from 50,000 projects to one million projects. These software projects are identified as most critical based on their number of direct dependencies, giving a more detailed view of the ecosystem and strengthening supply chain security as users see improved coverage of their dependencies.
Sigstore recently released a project update that reported nearly 500 contributors, 3,000 commits, and over one million entries in Rekor. For more information on what is driving this adoption, please visit the Sigstore blog.
In the pursuit of encouraging wider adoption of multi-factor authentication (MFA) by developers of critical open source projects, The Securing Critical Projects Working Group coordinated the distribution of nearly 1000 codes for free MFA tokens (graciously donated by Google and Github) to developers of the 100 most critical open source projects. This dsiribution is a small but critical step in avoiding supply chain attacks based on stolen credentials of key developers.
To join OpenSSF and/or contribute to these important initiatives, please visit: https://openssf.org/
“We’re proud to be among like-minded organizations and individuals that share a collective commitment to improving the security posture of open source software,” said Pedro Canahuati, Chief Technology Officer at 1Password. “Much of the technology we use today is built on open source software. Given 1Password’s human-centric approach to building user-friendly applications, it’s important to us that its integrity and security is protected.”
“The security of open source software and its supply chain is an essential aspect to Citi. We have worked with the open source community on bolstering security in these areas, and we look forward to strengthening this mission by joining the Open Source Security Foundation,” said Jonathan Meadows, Head of Cloud & Application Security Engineering, Citibank.
“Coinbase is the world’s most trusted cryptocurrency exchange, and the security of our open source dependencies — as well as the broader crypto ecosystem — is paramount. The OpenSSF’s goals align with our own, and Coinbase is proud to be contributing to increasing the security of open source software for the benefit of all,” said Jordan Harband, Staff Developer Relations Engineer, Coinbase.
“The importance of open source software security is well recognized by the customer, industry, and government. It is time for the community to take strategic, continuous, effective, and efficient actions to advance the open source software security posture. We are very glad to see OpenSSF launching initiatives (Scorecard, Alpha-Omega, SigStore, etc.) to improve the open source software security directly,” said Dr. Kai Chen, Chief Security Strategist, Huawei. “Huawei commits to strengthen investment on cybersecurity and to maintain a global, secure and resilient open source software supply chain.”
“Open source software is the foundation of today’s modern systems that run enterprises and government organizations alike – making software part of a nation’s critical infrastructure,” said Stephen Chin, VP of Developer Relations, JFrog. “JFrog is honored to be part of OpenSSF to accelerate innovation and advancement in supply chain security. Projects coming out of OpenSFF help make JFrog’s liquid software vision a secure reality.”
“With the increasing adoption of open source software and its growing importance in enabling innovation and transformation comes commensurate cybersecurity risks. The community needs a concerted effort to address them. We are excited to join the governing board of OpenSSF to collaborate with other members on defining and building set of solutions and frameworks and best practices to help ensure the integrity of the open source software supply chain and contribute our domain expertise, breadth of resources and global reach to this important effort,” said Subha Tatavarti, CTO, Wipro Limited.
“In the Shift Left, DevSecOps Developer-led adoption of Security Tools and platforms an OpenSource led approach is imperative. We are thrilled to see OpenSSF launching path-breaking initiatives to help end-users and technology providers harness the power of open source and contribute to the collective knowledge capital,” said Nat Natraj, co-founder, CEO, AccuKnox.
“Open Source software has become a key software supply chain of IT, and Open Source software security has a huge impact on infrastructure security. Alibaba Cloud, as the world’s leading cloud vendor that always puts security and data privacy as the priority, is keeping investing in security research. For a long time, the public has felt that open source software is very safe because of transparency, all software developers can review the code, find and fix vulnerabilities. But In fact, there are many widely used open-source software that is still possible to have security bugs that have not been noticed for a long time. It is great to have an organization like OpenSSF, which can connect so many great companies and open source communities to advance open source security for all. As a member of Open Source Security Foundation, we’re looking forward to collaborating with OpenSSF to strengthen the Open Source security,” said Xin Ouyang, Head of Alibaba Cloud Security, Alibaba Cloud.
“Block is very excited to join with other industry leaders to help step up the quality of open source security. I strongly believe that as an industry, it is our priority to address security concerns in a supply chain that we all use. We may compete on products, but we should never compete on security, and OSSF is a fantastic example of this idea,” said Jim Higgins, CISO of Block.
“Open source software is mainstream and underpins much of the world’s critical infrastructure as well as powering enterprises across the globe. Against this backdrop, OpenSSF’s mission to secure the open source supply chain is fundamental to our future,” said Duncan Johnston-Watt, CEO and Co-founder of Blockchain Technology Partners. “Collaboration is key to OpenSSF’s success, and so we are delighted to contribute to this initiative which complements our existing involvement in the Hyperledger Foundation, CNCF, and LF Energy.”
“Open source leads to a massive sharing of knowledge. Beyond the quantity of information, the quality of it becomes important to bring value to society,” said Philippe Antoine, CEO of Catenacyber. “We are glad to join OpenSSF to contribute to improving the cybersecurity of open source projects through fuzzing and other means. Let’s fix all the bugs!”
“Making the software lifecycle secure by default is increasingly critical as open source has become the digital backbone of the world. A vibrant, open software security ecosystem is essential to that mission. We are excited to be members of the Open Source Security Foundation and to continue working with the community to make the software lifecycle secure by default,” said Tracy Miranda, head of open source at Chainguard.
“Having a single source of truth for software artifacts has never been more vital to supply chains, especially for the open-source community. OSS engineers need trust and provenance, and a trusted source for secure end-to-end software delivery, from build through to production. At Cloudsmith, our mission is to evolve the cloud-native supply chain, making it simple for the OSS community to secure their software delivery at scale through Continuous Packaging. We are thrilled to join OpenSSF, and we look forward to being part of the continued mission to improve the security posture of open source software universally,” said Alan Carson, CEO at Cloudsmith.
“At DeployHub, we have been laser-focused on tracking the consumption of microservices, including their versions. These relationships make up our new application-level Software Bill of Materials (SBOMS). There is no better place to have this supply chain conversation than the OpenSSF,” explains Tracy Ragan, CEO DeployHub.
“As all industries increasingly rely upon open source software to deliver digital experiences, it is our collective responsibility to help maintain a vibrant and secure ecosystem,” said Lena Smart, Chief Information Security Officer, MongoDB. “You can have all the tools in the world, but at the end of the day, it is people across multiple organizations around the world working together that will ensure an expansive cybersecurity program. One of MongoDB’s values is “Build Together,” and we’re excited to join and further cross-industry collaboration to move the security of open source software forward.”
“Even if your code is perfectly secure, chances are it has vulnerable dependencies. And the number of unpatched vulnerabilities “in the wild” outpaces the speed at which the security community can patch or even identify them. Security, as it is practiced now, doesn’t scale at the rate needed to keep things at least as secure as they were yesterday, and we have compelling reasons to expect this to get even worse for defenders. However, through harnessing dedicated investment and coordinating industry-wide efforts to improve the security of the most critical open source components and find scalable interventions for the entire ecosystem, we have an opportunity to improve software security at a massive scale. But we can only do this together, and it is for this reason that NCC Group is excited to contribute to the work of OpenSSF,” said Jennifer Fernick, SVP & Global Head of Research at cybersecurity consulting firm NCC Group.
“The software supply chain has become a major risk vector for new threats, including those from the open source ecosystem. The inherent dependencies and complexities of the modern software supply chain means that companies often lack visibility and the ability to track each component through the entire software development process. Recognizing these challenges, ReversingLabs is pleased to join the OpenSSF and offer its contributions to the community that help drive the automation of more comprehensive software bills of material and mitigate software supply chain and package release risks,” said Mario Vuksan, CEO and Co-founder, ReversingLabs.
“As a technical community we all have a responsibility to improve the security and trust of an open source ecosystem that so many of us rely upon. Spotify has always relied on open source software, and contributes to the community through projects like Backstage. We believe open source software forms the backbone of our industry and we look forward to supporting the foundation’s goal of ensuring everyone can depend on a healthy and secure software ecosystem,” said Tyson Singer, VP, Head of Technology and Platforms at Spotify.
“The complexity of modern infrastructure has broadened attack surface areas to the point where data breaches are just about an everyday occurrence,” said Ev Kontsevoy, CEO of Teleport. “These risks have been exacerbated by the rise of remote and hybrid workplaces. With an eye on global attacks, the open source community’s commitment to improving open source security is critical to ushering in a new era of computing. Offering a solution to increase security, ease usability, and help scale enterprise development access, Teleport is pleased to be a part of the OpenSSF.”
“As a fast-growing startup, Wingtecher focuses on exploring the technologies that secure various kinds of open source softwares. We are excited to join OpenSSF and ready to collaborate with the community to overcome the emerging open source security challenges worldwide,” said Vincent Li, COO Wingtecher Technology.
Hosted by the Linux Foundation, the OpenSSF (launched in August 2020) is a cross-industry organization that brings together the industry’s most important open source security initiatives and the individuals and companies that support them. It combines the Linux Foundation’s Core Infrastructure Initiative (CII), founded in response to the 2014 Heartbleed bug, and the Open Source Security Coalition, founded by the GitHub Security Lab to build a community to support open source security for decades to come. The OpenSSF is committed to collaboration and working both upstream and with existing communities to advance open source security for all. For more information, please visit: https://openssf.org/
Founded in 2000, the Linux Foundation and its projects are supported by more than 1,800 members and is the world’s leading home for collaboration on open source software, open standards, open data, and open hardware. Linux Foundation’s projects are critical to the world’s infrastructure, including Linux, Kubernetes, Node.js, Hyperledger, RISC-V, and more. The Linux Foundation’s methodology focuses on leveraging best practices and addressing the needs of contributors, users, and solution providers to create sustainable models for open collaboration. For more information, please visit us at linuxfoundation.org.
###
The Linux Foundation has registered trademarks and uses trademarks. For a list of trademarks of The Linux Foundation, please see its trademark usage page: www.linuxfoundation.org/trademark-usage. Linux is a registered trademark of Linus Torvalds.
Jennifer Cloer
503-867-2304
The post Open Source Security Foundation Attracts New Commitments, Advances Key Initiatives in Weeks Since White House Security Summit appeared first on Linux Foundation.
Start tinkering with the open hybrid cloud by using DevStack to create a local OpenStack installation on a spare server or laptop.
Read More at Enable Sysadmin
LF Edge furthers innovation at the open source edge across a unified ecosystem, with induction of Edge Gallery —an open-source MEC edge computing project —and adds leading innovator American Tower as Premiere member and Ritsumeikan University as new Associate member
SAN FRANCISCO — February 28, 2022 – LF Edge, an umbrella organization within the Linux Foundation that aims to establish an open, interoperable framework for edge computing independent of hardware, silicon, cloud, or operating system, today announced American Tower has joined the project as a Premier member. Additionally, the project announced Edge Gallery has joined the umbrella as a Stage 1 project, RITSUMEIKAN University has joined as an Associate member, and the community issued its 2021 Annual Report.
American Tower, a global leading infrastructure provider of wireless, data center, and interconnect solutions to enable a connected world, joins other existing LF Edge Premiere members: Altran, Arm, AT&T, AVEVA, Baidu, Charter Communications, Dell Technologies, Dianomic, Equinix, Ericsson, F5, Fujitsu, Futurewei, HP, Huawei, Intel, IBM, NTT, Radisys, RedHat, Samsung, Tencent, VMware, Western Digital, ZEDEDA.
“We are pleased to see even more leading technology innovators joining as LF Edge members,” said Arpit Joshipura, general manager, Networking, Edge and IOT, the Linux Foundation. “The proliferation of new technologies joining collaborative innovation at the open source edge means scalability, interoperability, and market innovation is happening across the ecosystem.”
About America Tower
American Tower, one of the largest global REITs, is a leading independent owner, operator and developer of multitenant communications real estate with a portfolio of approximately 219,000 communications sites. For more information about American Tower, please visit americantower.com.
”We are excited to join LF Edge and their members to accelerate innovation, enabled by edge network architecture. A distributed model, positioning critical data closer to the user, provides the low-latency infrastructure to deliver the automation, performance, and cognitive insight required by manufacturing, healthcare, transportation, and more.” – Eric Watko, Vice President, Product Line Management, American Tower.
American Tower is joined by new Associate member, RITSUMEIKAN University, a private university in Kyoto, Japan, that traces its origin to 1869. With the Kinugasa Campus in Kyoto, and Kyoto Prefecture, the university also has a satellite called Biwako-Kusatsu Campus and Osaka-Ibaraki Campus. Ritsumeikan university is known as one of western Japan’s four leading private universities.
EdgeGallery Joins LF Edge Umbrella
Celebrating it’s two-year mark as an umbrella project, LF Edge welcomes its tenth project, Edge Gallery. Edge Gallery is an open-source MEC edge computing project initiated by Huawei, carriers, and vertical industry partners that joined the Linux Foundation in late 2021. Its purpose is to build a common edge computing platform that meets the “connection + computing” characteristics of the telecom industry, standardize the openness of network capabilities (especially 5G network capabilities), and simplify lifecycle processes such as MEC application development, test,migration, and running.
EdgeGallery joins the nine existing projects – Akraino, Baetyl, Fledge, EdgeX Foundry, Home Edge, Open Horizon, Project EVE, Secure Device Onboard (SDO) and State of the Edge – that support emerging edge applications across areas such as non-traditional video and connected things that require lower latency, and faster processing and mobility. LF Edge helps unify a fragmented edge market around a common, open vision for the future of the industry.
LF Edge 2021 Annual Report
The LF Edge community also issued a report of its progress and results from the past year. “LF Edge “ summarizes key highlights (including blueprints, deployments and momentum) Governing Board, Technical Advisory Board, Outreach Committee and General Manager. To download the report, visit: https://www.lfedge.org/resources/publications/.
More details on LF Edge, including how to join as a member, details on specific projects and other resources, are available here: www.lfedge.org.
About The Linux Foundation
Founded in 2000, the Linux Foundation is supported by more than 1,000 members and is the world’s leading home for collaboration on open source software, open standards, open data, and open hardware. Linux Foundation’s projects are critical to the world’s infrastructure including Linux, Kubernetes, Node.js, and more. The Linux Foundation’s methodology focuses on leveraging best practices and addressing the needs of contributors, users and solution providers to create sustainable models for open collaboration. For more information, please visit us at linuxfoundation.org.
# # #
The Linux Foundation has registered trademarks and uses trademarks. For a list of trademarks of The Linux Foundation, please see our trademark usage page: https://www.linuxfoundation.org/trademark-usage. Linux is a registered trademark of Linus Torvalds.
The post American Tower Joins LF Edge as Premiere Member, Community Adds EdgeGallery to Project Roster appeared first on Linux Foundation.
SAN FRANCISCO– February 28, 2022 – Today, the Magma project, an open-source software platform that gives network operators an open, flexible and extendable mobile core network solution, announced continued community growth as Red Hat joins Arm, Meta, and Qualcomm as Magma’s newest premier member, while sixteen other organizations join as General or Associate members: AMD, AQSACOM, Althea, Canonical, ecrio, free5GC, GenXcomm Inc., Lekha Wireless Solutions, Platform 9 Systems, Radtonics, Ramanujan College, Sempre.ai, Telaverge, WaveLabs, Whitestack, and ZEDEDA. Additionally, Emily Yousling, Product Manager, joins the Magma Governing Board as the Meta representative.
“I am excited to join the Magma community as part of the Governing Board,” said Emily Yousling, Product Manager, Meta. “The collaborative nature of the project and the diversity of membership is a powerful tool in creating innovative core networking solutions in the open.”
“We are pleased to see the Magma community continue to evolve at the Linux Foundation as a leader in network innovation,” said Arpit Joshipura, general manager, Networking, Edge, and IoT, the Linux Foundation. “The addition of Red Hat and other leading industry organizations are a welcome addition to our growing community. We are creating a venue for enabling change in the packet core space and integration across the stack.”
Since moving to the Linux Foundation in early 2021, Magma has grown considerably as a community with robust set of new members; the adoption of a master architecture roadmap (that’s 3GPP generation and access network agnostic); formation of a neutral governance structure; the hosting of its first Linux Foundation-managed event, Magma Day, (which was co-located with KubeCon + CloudNativeCon Europe 202); availability of the Magma 1.6 release; and demonstration of “Zero Touch Magma Automation with LFN EMCO” at the Linux Foundation Demo Pavilion at the 2021 Open Networking and Edge (ONE) Summit.
About Red Hat
Red Hat is the world’s leading provider of enterprise open source software solutions, using a community-powered approach to deliver reliable and high-performing Linux, hybrid cloud, container, and Kubernetes technologies. Red Hat helps customers integrate new and existing IT applications, develop cloud-native applications, standardize on our industry-leading operating system, and automate, secure, and manage complex environments. Award-winning support, training, and consulting services make Red Hat a trusted adviser to the Fortune 500. As a strategic partner to cloud providers, system integrators, application vendors, customers, and open source communities, Red Hat can help organizations prepare for the digital future.
“Open source is at the core of everything we do at Red Hat,” said Azhar Sayeed, Senior Director, Global Telco Technical Development, Red Hat. “The Magma Core Foundation has grown as an open source community and a leader in network innovation by providing operators with the flexibility and adaptability they need in a mobile core network solution. Joining the Magma Core Foundation as a premier member is a natural fit for Red Hat because we feel that together, we can continue to support and advance the adoption of open source technologies and the communities of developers that drive them.”
Additional new member support
free5GC
“The ultimate goal of free5GC is to implement a full commercially operational core network including Operation, Administration and Management (OAM), orchestrator, and network slicing,” said Jyh-Cheng Chen, leader of the free5GC project. “We are pleased to join the Magma community to co-develop a complete ecosystem and facilitate innovations in 5G and beyond.”
Wavelabs
“5G and Magma Core is the center of our strategy, and we believe Magma Core will enable a plethora of innovative 5G use cases at the Network Edge,” said Mansoor Khan, CEO of Wavelabs. At ‘Wavelabs.ai,’ we are committed to contributing to the Magma Core Opensource from architecture to development and testing. As a trusted partner to our customers, we advance Magma Core adoption and its use cases leveraging our deep expertise by offering Magma distro, support, and integration services. We serve equipment vendors, service providers, hyperscales, and enterprises and help them in accelerating their Journey to Future Connectivity.
Whitestack
“We joined Magma as part of our strategy to help accelerate the adoption of key open source technologies that will play a key architectural role in the networks of the future.Over the past three years, we have seen Magma evolve into a production grade component, which we are happy to have helped to deploy in Telcos,” said José Miguel Guzmán, Co-founder and Senior Solutions Architect at Whitestack.
For a full list of Magam Core membership, visit: https://www.magmacore.org/members
Resources
Magma Core Project WebsiteMagma ArchitectureMagma Day at KubeCon + CloudNative Con Europe Quickstart Guide
About the Linux Foundation
The Linux Foundation is the organization of choice for the world’s top developers and companies to build ecosystems that accelerate open technology development and commercial adoption. Together with the worldwide open source community, it is solving the hardest technology problems by creating the largest shared technology investment in history. Founded in 2000, The Linux Foundation today provides tools, training and events to scale any open source project, which together deliver an economic impact not achievable by any one company. More information can be found at www.linuxfoundation.org.
# # #
The Linux Foundation has registered trademarks and uses trademarks. For a list of trademarks of The Linux Foundation, please see our trademark usage page: https://www.linuxfoundation.org/trademark-usage. Linux is a registered trademark of Linus Torvalds.
The post Red Hat Joins Magma Core Foundation at Premier Level, Community Set to Further Open Source Mobile Packet Core appeared first on Linux Foundation.
Open source project to address industry API interoperability leveraging GSMA OPG requirements and Linux Foundation’s Developer Ecosystem
SAN FRANCISCO and BARCELONA, Spain —Mobile World Congress 2022 —February 28, 2022 – The Linux Foundation, the nonprofit organization enabling mass innovation through open source, and the GSMA, a global organization unifying the mobile ecosystem to discover, develop and deliver innovation foundational to positive business environments and societal change, today announced a new, open source project: “CAMARA – The Telco Global API Alliance”. The global partnership will address challenges in porting and reproducing API services across heterogenous operator and cloud architectures.
CAMARA will help customer and developer ecosystems by developing an open, global, and accessible API solution with access to operator capabilities, in whatever networks customers are in, allowing applications to run consistently between telco networks and different countries. In addition, CAMARA offers new opportunities for collaboration between network and cloud companies (including telcos, ISVs, device manufacturers, etc.) to address challenges of porting and reproducing API services across heterogeneous operator architectures. This prevents fragmentation of telco and cloud developers and enables faster, more versatile advancement of global portability and broad industry adoption of new features and capabilities.
A close collaboration has been set up between the CAMARA project and the GSMA’s Operator Platform initiative that is defining a federated platform solution for exposing operator network capabilities to external applications. This collaboration will ensure that developers relying on the CAMARA project’s API solution and abstraction will facilitate users across operator networks.
“We are thrilled to enter into this next chapter of collaboration with the GSMA,” said Arpit Joshipura, general manager, Networking, Edge and IoT, the Linux Foundation. “By harnessing existing open source communities within CNCF, LF Networking, LF Edge and aligning to GSMA’s OPG industry requirements, we are poised to address current challenges in API accessibility.”
“The Operator Platform initiative welcomes new members to join more than 40 leading operators, and 35 ecosystem partners, already working together on requirements and APIs. This type of collaboration with CAMARA is essential in accelerating scale to meet today’s integration demands,” said Henry Calvert, head of Networks, GSMA. “We are very pleased to be working with Linux Foundation, and our membership, on developing reliability and resilience in APIs, and simplifying challenges for our developer communities.”
Learn more about CAMARA during MWC Barcelona in keynote session of: https://www.mwcbarcelona.com/agenda/session/cloud-edge-a-new-approach-to-innovation
More details about “CAMARA – The Telco Global API Alliance”, are also available via GitHub: https://github.com/camaraproject.
CAMARA is supported by leading industry organizations, including: AT&T, Capgemini, Deutsche Telekom, Ericsson, GSMA, Google Cloud, IBM, Intel, Kandy, KDDI, Microsoft, MobiledgeX, Nokia, Orange, NGMN, Scenera, T-Mobile US, TIM, Telefonica, TELUS, the Linux Foundation and Vodafone.
More details about the GSMA’s Operator Platform initiative (and its closely related Telco Edge Cloud activity), are also at https://www.gsma.com/operatorplatform.
About GSMA
The GSMA is a global organization unifying the mobile ecosystem to discover, develop and deliver innovation foundational to positive business environments and societal change. Our vision is to unlock the full power of connectivity so that people, industry, and society thrive. Representing mobile operators and organizations across the mobile ecosystem and adjacent industries, the GSMA delivers for its members across three broad pillars: Connectivity for Good, Industry Services and Solutions, and Outreach. This activity includes advancing policy, tackling today’s biggest societal challenges, underpinning the technology and interoperability that make mobile work, and providing the world’s largest platform to convene the mobile ecosystem at the MWC and M360 series of events. We invite you to find out more at gsma.com.
About the Linux Foundation
Founded in 2000, the Linux Foundation is supported by more than 2,000 members and is the world’s leading home for collaboration on open source software, open standards, open data, and open hardware. Linux Foundation’s projects are critical to the world’s infrastructure including Linux, Kubernetes, Node.js, and more. The Linux Foundation’s methodology focuses on leveraging best practices and addressing the needs of contributors, users and solution providers to create sustainable models for open collaboration. For more information, please visit linuxfoundation.org.
###
The post Linux Foundation Announces New Project “CAMARA – The Telco Global API Alliance” with Global Industry Ecosystem appeared first on Linux Foundation.
OSS is a growing phenomenon, and every journey to open source best practices is unique. At the same time, there’s a whole lot of room to grow some more. Many organizations use Open Source Program Offices to align their open source efforts under a management system and policies designed to create a positive experience for internal developers and external participants to the communities they participate in and contribute.
While the Linux Foundation, under the auspices of The TODO Group, has previously published whitepapers about the benefits of open source and OSPOs, it became apparent that it needed an established model for evolving an OSPO within an organization. Beyond the modeling, it was important to supplement pathways to open source best practices with good old-fashioned storytelling in OSPO leadership and formation to help other leaders and practitioners see themselves in the process. It’s hard not to be inspired by the vision of some of the community’s innovators, so why not share their stories?
The TODO Group, in collaboration with Linux Foundation Research, is pleased to release a new whitepaper, The Evolution of the Open Source Program Office, as a roadmap for others to follow.
Ana Jiménez Santamaría, TODO Group’s OSPO Program Manager, further explains the motivations behind the development of the roadmap and case study:
“I have seen an increasing need for OSPO guidance in many organizations. I hope this study provides a way to better frame and visualize the OSPO ecosystem complexity and provide a roadmap to ease OSPO planning and adoption. We welcome the open source community to contribute and collaborate to these resources, expanding the initial archetype scope or improving the documentation for each of the stages.”
This whitepaper provides a set of patterns and directions – and even a checklist! – to help implement an OSPO or an open source initiative within corporate environments. This includes an OSPO maturity model, practical implementation from noted OSPO programs across regions and sectors, and a handful of broad OSPO archetypes (or personas), which drive differentiation in OSPO behavior.
Intending to drive differentiation in OSPO behavior, this whitepaper features a set of OSPO Archetypes from a company perspective, including:
Industry CollaborativesCross-Industry CollaborativesProject FacilitatorsOpen Source First OrganizationsTechnology Strategy ExpertsSoftware Companies
The OSPO maturity model has been developed based on a series of interviews from leaders of noted OSPO programs, including some of the most influential technology firms such as Red Hat, Microsoft, SAP, and VMware, as well as some of the most iconic brands. And yes, the research dug into recent OSPO survey data, too.
As the culmination of the research process, the whitepaper features three case studies of the evolution of OSPOs in end-user organizations in different industry verticals: Bloomberg (financial services), Comcast (media), and Porsche (transportation/automotive). Each case is structured as a journey through the stages of the OSPO model to put it into practice.
Bloomberg runs a highly mature OSPO with nine years of experience. With over 6,500 developers engaged and as many as 20 dedicated specifically to OSS, it is a major incubator of projects such as Kserve, bqplot, and PowerfulSeal.
Kevin P. Fleming, who served as the former head of technology engagement at Bloomberg, recalls the need for the organization to have trusted advisors when it comes to open source:
“As more and more people from management down to individual contributors understood that we wanted to build better relationships and broaden engagement and usage of open source, we became advisors in strategic decision-making. Should we use this particular project from this community? Does it look like a real community, or is it being run by a single company or individual? We helped answer those questions.”
Comcast is a five-year veteran of open source adoption, has four full-time engineers in its OSPO, and has been highly active incubating projects such as Apache Traffic Control, Trickster, and Kuberhealthy within the larger OSS community.
Nithya Ruff, who is a Comcast fellow and also serves on the Linux Foundation Board of Directors as chair, emphasized the need to make working on open source projects easy and to facilitate the process for Comcast employees when they participate:
“A lot of our engineers love being able to contribute to OSS and being able to speak at conferences, publish papers and blogs. Our job is to make it easy to make it work in OSS. We believe OSS is a critical component of innovation as a company and a key advantage in attracting great developers to work with us.”
Porsche’s OSPO is relatively new, having been in operation for two years, but already has a number of developers and engineers dedicated to open source coding incubating projects such as the Porsche Design System, the OSS Review Toolkit, and the Cookie Consent Banner.
Nik Peters, who runs Porsche’s OSPO, feels that the company’s role in open source is well suited to driving standards adoption in the automotive industry as an OSS end user.
“As an organization, we are in-between being a contributor and being a participant. One of our big goals is to see if we can drive and set open standards—for example, an automotive open source standard … our big goal is to move from 10 to 20 percent in-house embedded software to at least 60 percent over five years. This for us is a game-changer,”
Not all experiences are equal, but each is unique and valuable in its own right.
Who should read this report? Anyone who wants to learn about the value of the Open Source Program Office and its significance to organizational compliance, competitiveness, and stewardship of shared technologies in hardware, software, and standards.
The post Leveraging the Open Source Program Office: New Research Unpacks the Evolution of the OSPO (and a Whole Lot More) appeared first on Linux Foundation.
Redundancy with automated failover is good. But making the wrong decisions can make a high-availability solution worse than no redundancy at all.
Read More at Enable Sysadmin
Starting a new training series? You may find the fast-paced sysadmin life changes how you learn and retain information.
Read More at Enable Sysadmin
Learn about Linux namespaces by isolating a VPN connection in the net namespace.
Read More at Enable Sysadmin