The Linux Europe and OpenSSF Foundation They have launched a Initiative with which they intend to help maintainers, developers and administrators of Open Source projects to take the necessary steps for the Compliance with the Cyber Resile Law (CRA) of the European Union.
This initiative is based on the discussions and results of a workshop for developers and software administrators Open Source recently organized by both entities. In it, the main actors in the sector gathered to discuss the tasks to be carried out so that manufacturers, Open Source projects and Open Source software administrators meet the requirements of the EU cybercrime law.
Although the birth of this initiative is promoted by the urgent need to address the EU Cybercrison Law, its implications go much further. Its final objective is to equip Open Source communities, as well as manufacturers around the world, with the tools they need not only to comply with the law in Europe, but also so that they are prepared to address the security standards that may consider at a given time in any country.
The EU cybercraft law establishes new requirements and safety standards for software, with a special emphasis on the safety and reliability of digital products that are sold within the European market. That is why both organizations are working to offer guides and tools for members of the Open Source community to meet them.
In the coming months, the initiative will focus on several points, which also help those responsible for preparing the EU laws. Among them, the discussion and formalization of security specifications. To do this, they will develop standards, promoted by the development community, to ensure that Open Source projects can meet the security requirements established in the Cybercrism Law.
In addition, they will offer guide on compliance with standards. To do this, they will offer tools, procedures and best practices so that maintainers, manufacturers and developers work in line with the new regulations. Finally, they will generate resources to support the Open Source community in the automation and management of CRA standards to growing projects.
Both the Linux Europe and OpenSF Foundation invite the Open Source community to participate in this initiative, for what They have created a github repository with all the details On it, as well as the channels to be able to participate in it, communicate with other community members involved in their progress and receive periodic information about their activities and state.
