On July 14, 2023, the "2023 OWASP China Beijing Security Technology Forum" jointly organized by OWASP China and the Wanganjia community was successfully held in Beijing . Kaiyuan Wangan was invited to participate in this forum and share "Software Supply Chain Security Governance Practice" .
This "2023 OWASP China Beijing Security Technology Forum" is one of the important annual activities of OWASP China Beijing. With the theme of "Protecting the Future of Digital Intelligence", guests from industries such as medical care, communications, new energy, legal affairs, and software security were invited. Representatives, with a forward-looking perspective and keen insights, based on their respective industries, share cutting-edge practices in security governance, and jointly welcome the digital intelligence era of innovation and change.
Open source network security technology expert Wang Xiaolong gave a keynote speech on "Software Supply Chain Security Governance Practice" at the forum , sharing the experience of open source network security in the direction of software supply chain security governance. Different from traditional information security threats, security issues in the upstream of the software supply chain will be transmitted to all downstream links, causing widespread impact. Open source network security controls the three roles of "software developer", "third-party organization" and "software user" in the software supply chain through management systems and technical means, respectively corresponding to "enhancing security development capabilities and practicing development security systems" , "Comprehensive testing and evaluation of software supply chain security quality control", "Finding out software assets and strengthening software security protection" three solutions to enhance the governance capabilities of the entire software supply chain and reduce security risks in key links of the software supply chain.
Open source network security
Pioneer in the field of software supply chain security
Open source network security has long been committed to the research and practice of software supply chain security, and continuously promotes the security strategy of software supply chain. In recent years, Kaiyuan Network Security has established professional software supply chain security testing centers in many cities across the country, and has been recognized as the Guangdong Province Software Supply Chain Security Engineering Technology Research Center, and a number of products have been selected into the first batch of "Software Supply Chain Manufacturer and Product Directory. Relying on its ten years of practical experience and technical accumulation in the security field, Kaiyuan Network Security has developed a "one-stop software supply chain security solution" that can cope with various security detection scenarios, comprehensively protects the security of software at all stages, and facilitates digitalization Build high-quality development.