Dr. David A. Wheeler is an expert on open source software (OSS) and on developing secure software. His works on OSS include "Why Open Source Software / Free Software (OSS/FS)? Look at the Numbers!", "Publicly Releasing Open Source Software Developed for the U.S. Government", and "Open Source Software is Commercial". He also helped develop the U.S. Department of Defense (DoD) policy on OSS. His works on developing secure software include the book "Secure Programming HOWTO" and "Fully Countering Trusting Trust through Diverse Double-Compiling (DDC)". David A. Wheeler is the Director of Open Source Supply Chain Security at the Linux Foundation and teaches a graduate course on developing secure software at George Mason University (GMU). Dr. Wheeler has a PhD in Information Technology, a Master's in Computer Science, a certificate in Information Security, and a B.S. in Electronics Engineering, all from George Mason University (GMU), and is a Certified Information Systems Security Professional (CISSP). He lives in Northern Virginia.
24 July 2020 | 48 mins 40 secs
Hello and welcome to this episode of CHAOSScast! Today, we have two special guests with us, Frank Nagle, Assistant Professor in the Strategy Unit at Harvard Business School and David A. Wheeler, Director of Open Source Supply Chain Security at the Linux Foundation. We will discuss the use of metrics in looking at software identified by the Software Configuration Management systems. We will talk about CII Best Practices Badge Program and License Risk. And, there is a survey that you can participate in called the Core Infrastructure Initiative FOSS Contributor Survey (CII-FOSS Survey). Go ahead and download this episode now to find out more!