Unresolved concerns about technology include the need to improve collaboration between the public and private sector in order for open-source security to be advanced, especially at a time when open-source software is becoming more dominant globally alongside artificial intelligence.
Organizations like The Linux Foundation The following are some examples of how to get started: Open Source Initiative The open-source movement has seen significant progress. It is still necessary to increase cross-industry partnership and government oversight.
Ann Schlemmer is the CEO of Open-Source Database Management Company. She urged more action to address the lack of traction and to advocate open-source assurance of security. Percona.
In two years, the response by the government and private sector to the Log4j vulnerability Enduring Security Framework, which was developed for federal agencies who adopt open-source (OSS) software in response to 800,000 worldwide attacks. During this time of crisis the benefits and potential of public-private collaborations were evident.
Schlemmer notes that little progress has occurred since then. The U.S. hasn’t issued policies nor enacted laws to mandate the behavior of commercial enterprises when it comes to their use of Open-Source Software.
Schlemmer said to LinuxInsider that “with the increasing prevalence of open source models for artificial intelligence, the consequences of an exploit being made today can have grave consequences.”
Can public-private partnerships offer solutions?
It is important that organizations continue to develop practical policies to promote efficient business and stimulate innovation. According to Schlemmer, this need must be addressed in order to protect our world from the chaos and harm caused by exploitation of OSS vulnerability.
Absence of government actions to encourage more open-source cooperation is an important part of any solution for software security. In 2022 the U.S. Congress was presented with a bill addressing greater government actions to encourage and secure open source software. She said that the government has taken no action.
“Open-source is not as safe as it should be,” said Schlemmer.
Schlemmer noted that the U.K. parliament is far ahead of U.S. officials who have been unable to make progress in fostering better oversight for open source software and artificial intelligence.
She thinks that the U.K.’s proactive steps have provided some potential blueprints for how governments can encourage collaboration. Working partnerships are encouraged by policies which align with the collaborative nature that is the open source community.
“I also would like to believe that government is collaborative and listens to its constituents. They do the best they can. Security is a priority for everyone who uses technology. How do we start these conversations?” She asked.
Look for help before the worst happens
Schlemmer, despite her strong opinions on the need for open-source standards for safety, does not position Percona as a champion of partnership. She would rather see open-source companies become more involved with safety collaborations.
“We’re not leading the charge.” “I am not leading the way,” she said.
Schlemmer pays attention, though, to encourage the right people in her company, and other organizations, to engage with that mission. She argues that open source helps her company’s mission to serve its customers and users be more successful.
“We believe that open-source databases can accelerate innovation in all areas, including the database industry. Schlemmer said, “I could tie this to our mission, but it’s not what I want.”
She wants to see businesses and industries understand the need for collaboration in partnership to safely innovate. Alternatives include waiting for a major breach that triggers a reactive government response that limits innovation and open source developers.
Schlemmer said that the goal is to connect dots and link them with topics that are relevant in discussions about big technology, big tech companies and constituent interests.
“How can we bring it up in some of these conversations since large tech companies have a mixture of closed and open source? She added that “all of them have open source software”.
Expanding collaboration with two-fold goals
There is no doubt that workers and leaders of companies need to be educated about open-source standard. Schlemmer hopes the industry will ensure that safety guidelines are in place for both closed-source and open source code.
“Closed source and open source should be considered equally, so that we have the mechanisms to move quicker,” she added.
The funding must be taken into consideration. Schlemmer considers the picture of financial support. There is always tension between the private sector and public community, so this is an important conversation.
“It all starts with education and standards. We need to make sure there are more equal playing fields for everyone in tech,” Schlemmer said.
Open source and AI are advancing at a rapid pace, causing organizations to be caught in the “speed of technology” cycle.
How can we ensure that everyone is on the same page? Schlemmer questioned about the dangers of software developers facing new technological directions.
