Webinar Software Supply Chain: Shane Coughlan
Shane Martin Coughlan
Thursday, May 11, 2023. 13.00 - 14.30 CEST
Shane Martin Coughlan will give a talk about ISO standards and certification. The talk will be about 45 minutes followed by a Q&A. This episode is part of the webinar series The Ins and Outs of Open Software Supply Chain Management hosted on Thursdays in April and May.
This webinar took place on May 11, you can watch the recording here https://bbb.protagio.nl/playback/presentation/2.3/e156bbe10c5967b48f606f4ec5b14e818ba4877e-1683800917548
About Shane Martin Coughlan
Shane Martin Coughlan works at the Linux Foundation. He is general manager of the OpenChain Project, a global community of organizations collaborating to create trust in the open source supply chain and which maintains the OpenChain ISO/IEC 5230:2020, the International Standard for open source license compliance. He's also a General Assembly member of OpenForum Europe.
Webinar series: The Ins and Outs of Open Software Supply Chain Management
Shane Coughlan's talk is the fourth and final in a series of webinars about open source supply chain management. The series will explore topics such as the software bill of materials, legal consequences, tooling, and the Cyber Resilience Act.
Other talks in this series:
- April 6: Armijn Hemel. [ watch recording ]
Topic: Open Source in (Consumer) Electronics Supply Chains. - April 13: Philippe Ombredanne. [ watch recording ]
Topic: Tooling. - May 4: Carlo Piana & Alberto Pianon. [ watch recording ]
Topic: The importance of a Software Bill of Materials in light of the upcoming Cyber Resilience Act and product liability legislation in Europe.
Software Bill of Materials
The Software Bill of Materials (SBoM) is a critical component of open source software development. It is a list of all the components that make up a software product and provides important information about the licenses and dependencies of each component. In our webinars, we'll discuss how to create an SBOM and why it's important for your organization.
Tooling
We will also discuss tooling in the open source software supply chain. From automated testing to vulnerability scanning, we'll show you the tools that can help you streamline your development process and ensure that your software is secure.
Cyber Resilience Act
We'll also explore the Cyber Resilience Act, which aims to improve the security and resilience of software and services within the European Union. This Act could be of particular importance for organizations that use open source software in their products.
How to join
The online webinar series will take place on Thursdays on April 6, April 13, May 4 and May 11, 2023 at 13.00 - 14.30 CEST (Amsterdam, Berlin, Rome). Each talk will take about 45 minutes followed by a Q&A. If you don't have time for the Q&A feel free to leave earlier. Join us for these informative webinars to learn from experts in the field and connect with like-minded individuals. Join the webinar on the BigBlueButton platform with the following link https://bbb.protagio.nl/b/ron-qed-tog-gey. The link is valid for all episodes.
We'd appreciate it if you'd register for the webinar by sending an e-mail to webinars@nlnet.nl but it's not necessary.
The series will be in English and will be hosted on BigBlueButton, an open source webconferencing framework which is actively supported by NGI Zero to add end-to-end encrypted chat.
Related NGI projects
- Binary-analysis-ng improvements: BANG is a tool to analyse firmware and other binary files.
- FOSS Code Supply Chain Assurance: Mitigate attacks through software dependencies.
- Free Software Vulnerability Database: A resource to aggregate software updates.
