Attending this event?
September 19-21, 2023
Bilbao, Spain
View More Details & Registration
Note: The schedule is subject to change.

The Sched app allows you to build your schedule but is not a substitute for your event registration. You must be registered for Open Source Summit Europe 2023 to participate in the sessions. If you have not registered but would like to join us, please go to the event registration page to purchase a registration.

This schedule is automatically displayed in Central European Summer Time (UTC/GMT +2). To see the schedule in your preferred timezone, please select from the drop-down menu to the right, above "Filter by Date."

IMPORTANT NOTE: Timing of sessions and room locations are subject to change.

Back To Schedule
Tuesday, September 19 • 14:30 - 15:10
Implementing the OpenSSF Best Practices Badges & Scorecards Into Your Project - CRob, Intel & David A. Wheeler, The Linux Foundation

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Log in to leave feedback.

One of the key objectives of the The Open Source Security Foundation (OpenSSF) is to help improve the security of the software that is being developed. To do that requires simple tools that can easily be integrated into developer workflows, and requires documentation and guidance on how to do things with security in mind throughout the code's lifecycle. and experts that can coach, mentor, and work with software engineers to help improve the security of their environments, coding practices, and supply chains. This talk will showcase the work of the OpenSSF through the lens of the software developer, illustrating tangible actions the foundation is taking to educate, inform, and encourage developers to adopt and use excellent security practices. We will focus on the OpenSSF Best Practices badge and Scorecards, with specific tips on common problems and how to address them in your project, as well as countering some misunderstandings. Attendees will come away with an understanding of how to work towards achieving the prestigious OpenSSF Best Practices Badge as well as how to integrate the OSSF Scorecards project to report on the security posture of their project.

avatar for David A. Wheeler

David A. Wheeler

Director of Open Source Supply Chain Security, Linux Foundation
Dr. David A. Wheeler is an expert on open source software (OSS) and on developing secure software. His works on developing secure software include "Secure Programming HOWTO", the Open Source Security Foundation (OpenSSF) Secure Software Development Fundamentals Courses, and "Fully... Read More →
avatar for Christopher (CRob) Robinson

Christopher (CRob) Robinson

Director of Security Communications, Intel
Christopher Robinson (aka CRob) is the Director of Security Communications at Intel Product Assurance and Security. CRob is a 42nd level Dungeon Master and a 25th level Securityologist. He has worked at several Fortune 500 companies with experience in the Financial, Medical, Legal... Read More →

Tuesday September 19, 2023 14:30 - 15:10 CEST
Room 0E-2 (Floor 0)