Implementation tipsheet

To lay the groundwork for greater use of open-source software in government, Mitre Corp. officials recommend the following three policy steps:

The list should include applications that are commercially supported and widely used, and have proven track records of security and reliability. When considering products for the list, officials should give priority to heavily used applications and tools that provide high value. Examples include Linux, OpenBSD, NetBSD, FreeBSD, Samba, Apache and Perl.

These include policies that encourage the use of commercial products that work well with open-source programs, such as Microsoft Corp. Windows Services for Unix products, which can use open-source development tools. In addition, policies should be created to deal with products — such as Apache and Linux — that are already in use but may not enjoy official approval status.

Having an array of products lowers the risk of cyberattacks based on exploitation of specific products' features or flaws, and adding open-source products is a low-cost way to diversify the overall product mix.

Featured

  • Cybersecurity
    Boy looks under voting booth at Ventura Polling Station for California primary Ventura County, California. Joseph Sohm / Shutterstock.com

    FBI breach notice rules lauded by states, but some want more

    A recent policy change by the FBI would notify states when their local election systems are hacked, but some state officials and lawmakers want the feds to inform a broader range of stakeholders in the election ecosystem.

  • paths (cybrain/Shutterstock.com)

    Does strategic planning help organizations?

    Steve Kelman notes growing support for strategic planning efforts -- and the steps agencies take to keep those plans relevant.

Stay Connected

FCW INSIDER

Sign up for our newsletter.

I agree to this site's Privacy Policy.