A great article by Shahid Shah "...If you ask some regulatory affairs folks in medical device companies, they think OSS is too “dangerous” for use in safety critical systems. The most common excuse given by engineers is that the regulatory compliance folks will not allow OSS or that the FDA will disapprove. There is plenty of evidence to the contrary, however, because the FDA hasn’t really rejected devices due solely to the use of OSS. The lack of OSS use in medical devices and healthcare IT circles in most cases likely stems from a lack of experience with OSS at the senior executive and regulatory compliance ranks within companies. This is a summary of a quick 10 step process that R&D groups can use to properly experiment with and include OSS in safety-critical systems."
R&D Executive – Why Shellshock and Heartbleed Should Matter to You
So, you’ve heard of Shellshock, of course. And if you use Unix, you made sure someone installed the right p...
Most Recent Articles
Learn From the Best: Vulnerability Management Best Practices from the Best in the Business
Top 5 New Open Source Security Vulnerabilities in September 2018
Creating Your Open Source Policy Template: 3 Points You Don't Want to Overlook
Back to School: The Top Open Source Projects To Use When Starting Out As A Developer
Eclipse Che- WhiteSource’s Open Source Project of the Month for September 2018
How to Make Your Vulnerability Management Metrics Count
Which vulnerability management metrics do you need, to ensure that you've got vulnerability detection, remediation, patching and prioritization right?
Top 5 New Open Source Security Vulnerabilities in August 2018
Why Your Application Security Journey Must Start with a Comprehensive Software Composition Analysis (SCA) Program
Equifax Breach Year in Review: Vulnerabilities in Apache Struts Still Going Strong
The Future of Vulnerability Management Programs
The future of vulnerability management programs consists of advanced automated solutions for vulnerability scanning, prioritization and remediation
Zombies: Top 5 Open Source Vulnerabilities That Refuse To Die
DevOps Vs. DevSecOps; Are They Headed in Opposite Directions?
Top 5 New Open Source Security Vulnerabilities in July 2018
Dual Licensing for Open Source Components: Yeah or Meh?
8 Startup Due Diligence Questions You want to Be Asking
Security Patch Management — 7 Do’s and Don’ts
The 5 Common Mistakes Your Devops Team is Making
Bit- WhiteSource’s Open Source Project of the Month for July 2018
What’s a SaaS to Do? The SaaS Loophole in GPL Open Source Licenses
Why Drupalgeddon 2.0 May Still Be A Threat To Your Website