1. Computing

Mozilla launches new fund to help keep open-source software secure

By

mozilla apple google microsoft lawsuit headquarters
The Mozilla Foundation has launched the Secure Open Source (SOS) Fund to help fund audits of open-source software.

SOS, which is part of the Mozilla Open Source Support (MOSS) program, is making $500,000 available to open-source software makers to ensure that their work is clear of any bugs, and to avoid a repeat of Heartbleed or Shellshock.

“The SOS Fund will provide security auditing, remediation, and verification for key open-source software projects,” said Chris Riley, head of public policy at Mozilla. The fund is starting at half a million dollars but the Mozilla Foundation is encouraging companies and government to put money forward to fund software security research.

The SOS Fund will work in three stages. Mozilla with enlist and pay for the services of security firms to carry out audits on other people’s code. After the audit is completed Mozilla will work with the code creator to implement the fixes. And Mozilla will pay for this remediation to be verified to ensure that all bugs have been fixed thoroughly.

This process has already been carried out on three different open-source software projects to identify vulnerabilities. “In those audits we uncovered and addressed a total of 43 bugs, including one critical vulnerability and two issues with a widely used image file format,” said Riley. “These initial results confirm our investment hypothesis, and we’re excited to learn more as we open for applications.” Applications for funding are open now.

Open-source software relies on collaboration and user involvement to identify and act on bugs. This has become more and more important as open source has become the norm compared to several years ago. However a robust security audit still costs money, and for many smaller software developers this can be prohibitively expensive. For these developers, Mozilla’s new fund will be welcome news but the fund will need more backers in the future to keep it alive and available to a wide audience of software creators.

Editors' Recommendations

How to keep your data secure while working from home

man working at a desk at home

Election data is vulnerable. Microsoft’s open source software aims to fix that

blockchain could be implemented in electoral voting by 2019 floridians go to the polls for early

Microsoft continues open-source effort, releases Windows Calculator code

Windows Insider

EU to offer bug bounties for finding security flaws in open-source software

Bug bounty using computer

With Tesla bleeding money, Elon Musk initiates hardcore spending review

Tesla Model Y front

Google is finally bringing YouTube Music to older Wear OS watches

youtube launches music feat

The best places to get pre-owned video games at a great price

Original PlayStation console close up.

Best cheap oven deals for September 2021

cooking on the frigidaire gallery fgif3036tf induction range self cleaning oven 1

Everything we know about Nickelodeon All-Star Brawl

Patrick Star and Sandy Cheeks fight in Nickelodeon All-Star Brawl

Here’s what the new Stranger Things trailers hint at for season 4

Millie Bobby Brown and the cast of Stranger Things.

Resident Evil 4 VR is coming just in time for Halloween

Leon aims at villagers in Resident Evil 4 VR.

We can’t believe how cheap this 70-inch 4K TV is at Best Buy today

The 70-inch Hisense 70A6G 4K TV with the Android TV home screen on the display.

For Nintendo 64 collectors, every game is a treasured memory

Nintendo 64 console and games with a gradient overlay.