Skip to main content
Journal ArticleOPEN ACCESS

OSS Supply-chain Security: What Will It Take?

Queue (2022) 20(5) 86-102
DOI: 10.1145/3570923
0Citations
Citations of this article
8Readers
Mendeley users who have this article in their library.

Abstract

While enterprise security teams naturally tend to turn their focus primarily to direct attacks on their own infrastructure, cybercrime exploits now are increasingly aimed at easier targets upstream. This has led to a perfect storm, since virtually all significant codebase repositories at this point include at least some amount of open-source software. But opportunities also abound there for the authors of malware. The broader cybercrime world, meanwhile, has noted that open-source supply chains are generally easy to penetrate. What's being done at this point to address the apparent risks?.

Cite

CITATION STYLE

APA

Kaczorowski, M., Momot, F., Neville-Neil, G. V., & McCubbin, C. (2022). OSS Supply-chain Security: What Will It Take? Queue, 20(5), 86–102. https://doi.org/10.1145/3570923

Register to see more suggestions

Mendeley helps you to discover research relevant for your work.

Already have an account?

Save time finding and organizing research with Mendeley

Sign up for free