Leveraging Open Source solutions for secure government systems

Abstract

Recent updates to federal government and Department of Defense (DoD) security policies have opened the door to the official use of Open Source Software (OSS) as a solution set for the development of secure enterprise systems. New policies published by the National Institute of Standards and Technology (NIST) and the DoD have significantly changed the guidelines associated with deployment of industry-standard OSS security solutions, including: ● Linux - including the NSA sponsored “Security Enhanced Linux” product ● OpenSSL - a full-strength general-purpose cryptography ● Tripwire and Open Source Tripwire® - A change Monitoring and Analysis and auditing product