Shared w/ me by Jennifer Lawrence from UNL →
NSF launches new initiative to safeguard open-source ecosystems in view of an evolving threat landscape
New $15M program invests in safe, secure and privacy-preserving open-source ecosystems, addressing potential critical vulnerabilities
The U.S. National Science Foundation launched a new $15 million funding opportunity to address vulnerabilities of open-source ecosystems (OSE). The Safety, Security, and Privacy of Open-Source Ecosystems (Safe-OSE) program aims to catalyze meaningful improvements in the safety, security and privacy stance of targeted OSEs and bolster the resiliency of these ecosystems for recovering from future incidents.
“The characteristics of openness that make open-source such a powerful driver of innovation also enable many avenues of attack by adversaries,” said Erwin Gianchandani, NSF assistant director for Technology, Innovation and Partnerships (TIP).
Added Barry Johnson, division director for TIP Translational Impacts: “Investment from the NSF Safe-OSE program will help established open-source ecosystems address vulnerabilities or risks against adverse events before they happen.”
The Safe-OSE program anticipates making up to 10 awards, each up to $1.5 million. Each project should focus on efforts to enhance the safety, security and privacy characteristics of the open-source product and its supply chain as well as to reinforce the overall OSE’s capabilities for managing current and future risks, attacks, breaches and responses. To apply, applicants must first submit a preliminary proposal. If that preliminary proposal is determined to be a good fit for the program, a full proposal will be invited.
The Safe-OSE program grows out of the TIP Directorate Pathways to Enable Open-Source Ecosystems (POSE) program, a relatively new and ongoing initiative to invest in new managing organizations to catalyze the distributed, community-driven development and growth of new OSEs.
Preliminary proposals to Safe-OSE are due January 14, 2025, by 5 p.m., submitting organization’s local time. To learn more, read the Safe-OSE funding opportunity and register for an upcoming informational webinar on October 10.