EU to fund bug bounty program for top open-source software
14 popular open-source projects will be funded in the third edition of FOSSA
The European Union will help cover the expenses of bug bounty programs for 14 open-source projects according to an announcement made by EU Member of Parliament Julia Reda.
The projects that will receive funding for their bug bounty programs are 7-zip, Apache Kafka, Apache Tomcat, Digital Signature Services (DSS), Drupal, Filezilla, FLUX TL, the GNU C Library (glibc), KeePass, midPoint, Notepad++, PuTTY, the Symfony PHP framework, VLC Media Player and WSO2.
The bug bounty programs are being sponsored as part of the third edition of the Free and Open Source Software Audit (FOSSA) project.
FOSSA was first approved by EU authorities back in 2015 when security researchers discovered severe vulnerabilities in the OpenSSL library a year earlier.
Third edition of FOSSA
In her announcement, Julia Reda highlighted the importance of free and open-source software, saying:
"The issue made lots of people realise how important Free and Open Source Software is for the integrity and reliability of the Internet and other infrastructure. Like many other organisations, institutions like the European Parliament, the Council and the Commission build upon Free Software to run their websites and many other things."
The first edition of FOSSA ran between 2015 and 2016 with a budget of €1m and a public survey was held which decided that Apache HTTP web server and the KeePass password manager would receive a sponsored security audit.
Are you a pro? Subscribe to our newsletter
Sign up to the TechRadar Pro newsletter to get all the top news, opinion, features and guidance your business needs to succeed!
FOSSA 2 had a budget of €2m but its bug bounty program was limited to €60,000 for the VLC Media Player app.
Beginning in January, security researchers and companies can hunt for vulnerabilities in the 14 open source projects chosen for FOSSA 3 and report them to earn a monetary award.
Via ZDNet
- We've also highlighted the best open source software
After working with the TechRadar Pro team for the last several years, Anthony is now the security and networking editor at Tom’s Guide where he covers everything from data breaches and ransomware gangs to the best way to cover your whole home or business with Wi-Fi. When not writing, you can find him tinkering with PCs and game consoles, managing cables and upgrading his smart home.