A great article by Shahid Shah "...If you ask some regulatory affairs folks in medical device companies, they think OSS is too “dangerous” for use in safety critical systems. The most common excuse given by engineers is that the regulatory compliance folks will not allow OSS or that the FDA will disapprove. There is plenty of evidence to the contrary, however, because the FDA hasn’t really rejected devices due solely to the use of OSS. The lack of OSS use in medical devices and healthcare IT circles in most cases likely stems from a lack of experience with OSS at the senior executive and regulatory compliance ranks within companies. This is a summary of a quick 10 step process that R&D groups can use to properly experiment with and include OSS in safety-critical systems."
R&D Executive – Why Shellshock and Heartbleed Should Matter to You
So, you’ve heard of Shellshock, of course. And if you use Unix, you made sure someone installed the right p...
Most Recent Articles
5 Secure Coding Practices You Actually Need: Principles for Secure Code Every Time
Top 5 New Open Source Security Vulnerabilities in May 2019
Docker Container Monitoring: Protect Your Investment
SAST vs. SCA: It’s Like Comparing Apples to Oranges
Top 5 Open Source Vulnerabilities for April 2019
Top 9 Tools and Tips for Improving Your DevOps Pipeline
Docker Container Security: Challenges and Best Practices
HyperLedger - WhiteSource’s Open Source Project of the Month for April 2019
The Results for 2019 are in: Here are the Key Takeaways from Stack Overflow’s Developer Survey
Docker Image Security Scanning: What It Can and Can't Do
Everything You Wanted to Know About Open Source Attribution Reports
Security that Doesn’t Slow You Down
Top 5 New Open Source Security Vulnerabilities in March 2019
Kubernetes Pod Security Policy Best Practices
Best Practices for Open Source Governance
March Madness 2019: Competing To Be The Top GitHub Repository
Jenkins X- WhiteSource’s Open Source Project of the Month for March 2019
The Top 10 Linux Kernel Vulnerabilities You Should Know
Is One Programming Language More Secure Than The Rest?
Your Guide to Open Source Vs Proprietary Software Security