Strategy, Vulnerability management

Core Infrastructure Initiative to fund OpenSSL audit

May 29, 2014

Just over a month after its formation, the Core Infrastructure Initiative (CII) has announced it will be providing some much-needed funding for OpenSSL.

The financing is intended to bring on two fulltime core developers for the open source toolkit project, and funds will also be allocated toward the Open Crypto Audit Project (OCAP) so they may “conduct a security audit of the OpenSSL code base,” according to a release by the CII.

The group recently formed in response to the Heartbleed bug, was organized by The Linux Foundation and includes tech companies Amazon Web Services, Facebook, Dell, Google, and others.

The announcement also noted new members Adobe, Bloomberg, HP, Huawei and salesfoce.com, in addition to new advisory board members which include Matt Green of OCAP and Bruce Schneier of the Berkman Center for Internet and Society at Harvard Law School.

prestitial ad