Google wants secure open-source software to be the future

After attending the recent White House Open Source Software Security Summit, Google is now calling for a public-private partnership to not only fund but also staff essential open-source projects.

In a new blog post, president of global affairs and chief legal officer at both Google and Alphabet, Kent Walker laid out the search giant's plans to better secure the open-source software ecosystem.

For too long, businesses and governments have taken comfort in the assumption that open source software is generally secure due to its transparent nature. While many believe that more eyes watching can help detect and resolve problems in the open source community, some projects actually don't have many eyes on them while others have few or none at all.

To its credit, Google has been working to raise awareness of the state of open source security and the company has invested millions in developing frameworks and new protective tools. However, the Log4j vulnerability and others before it have shown that more work is needed across the ecosystem to develop new models to maintain and secure open source software.

Public-private partnership 

In his blog post, Kent proposes creating a new public-private partnership to identify a list of critical open source projects to help prioritize and allocate resources to ensure their security.

In the long term though, new ways of identifying open source software and components that may pose a system risk need to be implemented so that the level of security required can be anticipated and the appropriate resources can be provided.

At the same time, security, maintenance and testing baselines need to be established across both the public and private sector. This will help ensure that national infrastructure and other important systems can continue to rely on open source projects. These standards also should be developed through a collaborative process according to Kent with an “emphasis on frequent updates, continuous testing and verified integrity”. Fortunately, the software community has already started this work with organizations like OpenSFF working across industry to create these standards.

Now that Google has weighed in on the issue of open source security, expect other tech giants like Microsoft and Apple to propose their own ideas regarding the matter.

We've also rounded up the best open source software and the best business laptops

TechRadar – All the latest technology news

Read More

Google is launching a more secure place for your photos

Keeping the photos and videos stored on your Android smartphone away from prying eyes is about to get a whole lot easier as the new Locked Folder feature in Google Photos is now rolling out to even more devices.

Google's own Pixel phones were the first devices to get access to this feature and now almost six months later, it's finally becoming available to smartphones from other device manufacturers including Samsung, OPPO and OnePlus.

While Google Photos acts as a cloud storage service for your photos, it's worth noting that pictures moved to a Locked Folder will no longer be backed up to the cloud and will only be available on your smartphone. At the same time, if you uninstall Google Photos or clear its app data, all of the items inside your Locked Folder will also be deleted.

For this reason, you should back up these photos online using one of the best photo cloud storage services for safekeeping before getting started with Google Photos' Locked Folder feature.

Hiding sensitive photos and videos

According to a support document from Google, to configure the Locked Folder feature in Google Photos, you'll first need to open the app and go to Library > Utilities > Locked Folder.

From here, just follow the on-screen instructions to unlock your device though if you don't have a screen lock set up for your smartphone, you'll need to do that first before using Locked Folder. Once the Locked Folder feature is ready, you can select the photos and videos you want to secure, tap on the three dot menu and select Move to Locked Folder to hide these items from the main Google Photos library.

If you own one of Google's Pixel phones, you can save photos directly from Pixel camera to Locked Folder to have them hidden automatically.

Up until now, Android users had to rely on third-party apps to hide photos and videos stored on their devices but with Locked Folder now rolling out to non-Pixel phones, you'll be able to secure all of your photos and videos directly in Google Photos.

We've also rounded up the best cloud storage, best photo cloud storage and best cloud backup services

Via Android Central

TechRadar – All the latest technology news

Read More

Cyber Polygon 2021: Towards Secure Development of Digital Ecosystems

Cybersecurity is one of the most important topics on the global agenda, boosted by the pandemic. As the global digitalisation is further accelerating, the world is becoming ever more interconnected. Digital ecosystems are being created all around us: countries, corporations and individuals are taking advantage of the rapid spread of the Internet and smart devices. In this context, a single vulnerable link is enough to bring down the entire system, just like the domino effect.
Threatpost

Read More

Secure Cloud-First Enablement

The modern enterprise must move at the pace of change and that means evolution to a cloud first mindset. Gaining a zero trust network architecture with additional tools that allow security on the edge…

Articles RSS Feed

Read More

A Secure Access Mindset

What is said about secure access doesn’t always line up with what is done with secure access. The seamless integration of the enterprise must be taken into account when taking steps on the secure acce…

Articles RSS Feed

Read More

The Secure Access Journey

The business value that is being delivered to the broad organizational vision can get folks on board. But they won’t start paddling until they understand what’s in it for them- helping not hurting bus…

Articles RSS Feed

Read More