CII badge program live

The Linux CII has handed out its first security badges.

Foreshadowed last year at LinuxCon 2015, the CII (Core Infrastructure Initiative) Best Practises Badge is pitched as an alternative to high-price commercial certifications.

It's a self-assessment process, in which the project's personnel check that they're following the CII's guidelines.

The fist projects to put the pin in their lapels are Curl, GitHub, the Linux kernel, OpenBlox, OpenSSL, Node.js and Zephyr. Badging a project doesn't guarantee it's not going to be subject to vulnerabilities, but it does mean the project's maintainers are paying attention to security. ®

Biting the hand that feeds IT © 1998–2018