What is OSSI? The Open Source Software Institute (OSSI) is a non-profit (501 c 6) organization comprised of corporate, government, academic and Open Source Community representatives whose mission is to promote the development and implementation of open-source software solutions within U.S. federal, state and municipal government agencies and academic entities.
To keep up-to-date on OSSI activities, please register on the OSSI web site to access additional OSSI program information and updates as well as open source reference materials. (this is a low-volume info-update list)
Click here to contribute to OSSI:
OSSI is a non-profit organization that depends on YOUR support to keep our programs going. Please join or make a contribution today. Thanks.
The US Navy is bored with manufacturer lock-in and wants to buy IT systems based on open standards.only.
Speaking this month at the Navy IT conference in Vienna, VA , Vice Admiral Mark Edwards, the 'CIO' of the Navy, declared: “The days of proprietary technology must come to an end,” he said. “We will no longer accept systems that couple hardware, software and data," FCW reports.
The US Navy is bored with manufacturer lock-in and wants to buy IT systems based on open standards.only.
Speaking this month at the Navy IT conference in Vienna, VA , Vice Admiral Mark Edwards, the 'CIO' of the Navy, declared: “The days of proprietary technology must come to an end,” he said. “We will no longer accept systems that couple hardware, software and data," FCW reports.
OSSI will have representatives at the upcoming NIST FIPS 140-3: Software Security Workshop
We'll keep you posted.
Here are more details
FIPS 140-3: Software Security Workshop
National Institute of Standards and Technology (NIST)
100 Bureau Drive
Building 101, Lecture Room B
Gaithersburg, MD 20899
March 18, 2008
Sponsors:
National Institute of Standards and Technology (NIST) Cryptographic Module Validation Program (CMVP)
Audience:
Any organization that provided comments on the first draft FIPS 140-3 and cryptographic module software vendors.
Format:
Workshop
Purpose:
To discuss comments received on the first draft FIPS PUB 140-3 pertaining to software security requirements for cryptographic modules.
Topics:
* Review and discussion of technical comments
* Status Update and schedule for FIPS 140-3
Registration:
Invitation Only - Due to limited seating and to focus the discussion on 140-3 software security issues we are only inviting people that provided comments and cryptographic module software vendors.
OSSI Announces FIPS Validated OpenSSL Module (1.1.1) Revalidation
On Wednesday, 6 February, 2008, CMVP informed OSSI that the long awaited re-validation of the vulnerability fix for the OpenSSL FIPS Object Module v1.1.1 has been awarded. The patched version (new certificate number 918) of that product is now known as v1.1.2 and can be downloaded from http://www.openssl.org/source/openssl-fips-1.1.2.tar.gz.
Please note that the DSA algorithm has been removed from the validation because the rules for DSA changed and the code didn't. (click "read more" below for additional details on DSA)
As of 6 February, 2008, the CMVP validation list (http://csrc.nist.gov/groups/STM/cmvp/documents/140-1/1401val2007.htm) has not been updated to include the new validated module postings. This update should come as part of CMVP's regular posting cycle (expected by Friday, 8 February, 2008).
Please click "Read More" below for additional details
The
DoD Software Tech News is published quarterly by the Data & Analysis Center for Software (DACS). The DACS is a DoD sponsored Information Analysis Center (IAC), administratively managed by the Defense Technical Information Center (DTIC) under the Defense Information Systems Agency (DISA). The DACS is technically managed by Air Force Research Laboratory (AFRL), Rome, NY and operated by ITT Industries, Advanced Engineering and Sciences Division.
Click "Read More" below for a list of articles in this publication
The Open Source Software Institute (OSSI) is a non-profit (501 (c )(6)) organization comprised of corporate, government and academic representatives whose mission is to promote the development and implementation of open-source software solutions within U.S. federal and state government agencies and academic entities.
An Open-Source ADVOCATE - OSSI serves as a collective resource and venue for the promotion, development and implementation of open-source software solutions between corporate, government and academic entities.
A Research and Development FACILITATOR - OSSI serves as a facilitator and coordinator of R&D projects, systems and application evaluation and development and academic studies regarding technical, policy, economic/market and legal aspects of open-source software.
An Open-Source POLICY CONSORTIUM - OSSI serves as a forum for working committees of industry, governmental and academic representatives to address open-source issues in regards to government/industry standards, academic research, economic/market and legislative policy.
Since 1985, IEM has led the way in helping government, military, and the private sector manage risk in an ever complex world, keeping people safe and information and infrastructure secure.
Our risk-based solutions and products—nationally recognized and award winning—improve protection, enhance security, and boost productivity. IEM innovation forms at the intersection of sound science, robust IT, and unique operational experience. Innovation will always be a part of who we are and the solutions we build.
National Center for Open Source Policy and Research
