Be-Secure
Its an umbrella of open source security projects, utilities tracker and maintained by the Be-Secure community.
Vision
We envision a future where the Be-Secure community becomes the one-stop for all open source security tools and technologies that interoperate without the need for customized integrations with security handled proactively.
Mission
Establish a community of open source security specialist through Be-Secure community initiative
Why Be-Secure
Today open source software is an integral part of the technology landscape in many organizations. Their adoption rate is increasing year on year. The benefits from open source are multi-fold and it is the way forward to develop capabilities through collaboration with open source community projects. This approach necessitates the focus on security for open source projects. Be-Secure projects focus on addressing common security requirements of open source projects.
Be-Secure is for
Organizations, open source developers, security researchers, auditors and regulators – all can benefit from Be-Secure
TAVOSS
TAVOSS is Trusted And Verified Open Source Software that has undergone a security assessment by the Be-Secure community.
Benefits from Be-Secure
Developers can easily learn secure development practices and are proactively guided by Be-Secure security environments to apply those practices and automatically informed when action is needed to prevent, remediate, or mitigate security issues. Developers, auditors, and regulators can create new Be-Secure security environments and easily distribute security policies that are enforced through tooling and automation, providing continuous assurance of the results. Security assessment environments aid developers and researchers to identify security issues, like unintentional vulnerabilities and have this information swiftly flow - backward through the supply chain to someone who can rapidly address the issue. Be-Secure Community members can provide information and notifications about product defects, mitigations, quality, and supportability and have this information rapidly flow forward across the ecosystem system to all users, and users can rapidly update their software or implement mitigations as appropriate.