Re: why does FreeBSD only offer trustworthiness and transparency to people who donate money?

Reply: Simon Connah : "Re: why does FreeBSD only offer trustworthiness and transparency to people who donate money?"
In reply to: Dale Scott : "Re: why does FreeBSD only offer trustworthiness and transparency to people who donate money?"
Go to: [ bottom of page ] [ top of archives ] [ this month ]

From: John Baldwin <jhb_at_FreeBSD.org>
Date: Sat, 20 Apr 2024 18:42:08 UTC

On 4/19/24 2:44 PM, Dale Scott wrote:
> ----- Original Message -----
>> From: "John Baldwin" <jhb@FreeBSD.org>
>> To: "Lexi Winter" <lexi@le-fay.org>, "questions" <questions@freebsd.org>
>> Cc: core@freebsd.org
>> Sent: Friday, April 19, 2024 2:55:46 PM
>> Subject: Re: why does FreeBSD only offer trustworthiness and transparency to people who donate money?
> 
>> On 4/18/24 2:30 PM, Lexi Winter wrote:
>>> so today i came across this press release:
>>>
>>> https://freebsdfoundation.org/blog/freebsd-foundation-delivers-v1-of-freebsd-ssdf-attestation-to-support-cybersecurity-compliance/
>>
> 
> Thank you John for a very clear explanation.
> 
> Can you comment if cybersecurity-type attestations may also be available one day? Personally I suspect there are too many variables for a general attestation, but also suspect your opinion will be infinitely more informed than mine. ;-)

I have no idea on that currently.  In general attestations / certifications are
drive by someone who needs them (e.g. a vendor selling a product that requires
an attestation for specific customers).  The Project itself doesn't really do
any of those directly.

-- 
John Baldwin