A great article by Shahid Shah "...If you ask some regulatory affairs folks in medical device companies, they think OSS is too “dangerous” for use in safety critical systems. The most common excuse given by engineers is that the regulatory compliance folks will not allow OSS or that the FDA will disapprove. There is plenty of evidence to the contrary, however, because the FDA hasn’t really rejected devices due solely to the use of OSS. The lack of OSS use in medical devices and healthcare IT circles in most cases likely stems from a lack of experience with OSS at the senior executive and regulatory compliance ranks within companies. This is a summary of a quick 10 step process that R&D groups can use to properly experiment with and include OSS in safety-critical systems."
R&D Executive – Why Shellshock and Heartbleed Should Matter to You
So, you’ve heard of Shellshock, of course. And if you use Unix, you made sure someone installed the right p...
Most Recent Articles
The Results for 2019 are in: Here are the Key Takeaways from Stack Overflow’s Developer Survey
Docker Image Security Scanning: What It Can and Can't Do
Everything You Wanted to Know About Open Source Attribution Reports
Security that Doesn’t Slow You Down
Top 5 New Open Source Security Vulnerabilities in March 2019
Kubernetes Pod Security Policy Best Practices
March Madness 2019: Competing To Be The Top GitHub Repository
Jenkins X- WhiteSource’s Open Source Project of the Month for March 2019
The Top 10 Linux Kernel Vulnerabilities You Should Know
Is One Programming Language More Secure Than The Rest?
Your Guide to Open Source Vs Proprietary Software Security
PCI Software Security Framework: All You Need to Know
The PCI Software Security Framework lays out new guidelines for payment application developers. We break down what you need to be compliant.
Inspiring The Next Generation Of Women In Tech At WhiteSource
We took the opportunity of International Women's Day to hear from female developers at WhiteSource. They offer their stories of how they came to tech as well as advice for companies and women.
Top 5 New Open Source Vulnerabilities in February 2019
Top 5 Docker Vulnerabilities You Should Know
WhiteSource To Offer New Pipe Integration for Bitbucket
Bulma- WhiteSource’s Open Source Project of the Month for February 2019
Experience over Best Practices- Interview with CyberArk’s WhiteHat Hacker Len Noe
DevSecOps: From Theory to Practice
3 Crucial Tips for Smarter Container Security Scanning