On the afternoon of August 23, the Hefei Software Industry Software Supply Chain Security Salon was held in Zhongan Chuanggu Science and Technology Park. The salon was co-hosted by Hefei Software Industry Public Service Center and Zhongan Chuanggu Science and Technology Park Company. Wang Xiaolong and Yin Jie, experts in open source network security software supply chain security, were invited to participate in the meeting and brought exciting content sharing on software supply chain security. The practical path and experience of software supply chain security are discussed.
Xu Fei, head of the Hefei Software Industry Public Service Center focused on software industry empowerment and software security, focusing on the comprehensive service system of the public service center, involving source code security testing, open source compliance testing, mobile Internet new technology and new application security detection and other services.
(Xu Fei, Head of Hefei Software Industry Public Service Center)
Wang Xiaolong systematically explained the security of the software supply chain from the aspects of basic cognition, security risks, development trends, and national policies, and provided typical solutions and practical cases. It helped the participating companies effectively enhance their awareness of the security of the software supply chain, establish security awareness, and achieve secure development.
(Wang Xiaolong, supply chain security expert of open source network security software)
Yin Jie pointed out that open source governance is a system construction work, which will involve personnel from various departments on the enterprise side, rather than being undertaken independently by the security team. In the entire governance work, people are the core driving force for the implementation of governance work. It is very important to enhance the safety awareness of enterprise personnel. Only by clarifying the goals and scope of collective and individual open source governance work and allowing employees to voluntarily recognize the relevant internal systems of the enterprise can further promote Implementation of open source governance.
(Yin Jie, supply chain security expert of open source network security software)
At the meeting, the heads of participating companies made detailed introductions to their own company conditions and cooperation needs, and conducted in-depth discussions on the future development direction of the software industry.
Open source network security has long been committed to the research and practice of software supply chain security, and continuously promotes the security strategy of software supply chain. In recent years, Kaiyuan Network Security has established professional software supply chain security testing centers in many cities across the country, and has been recognized as the Guangdong Province Software Supply Chain Security Engineering Technology Research Center, and a number of products have been selected into the first batch of "Software Supply Chain Manufacturer and Product Directory. Relying on its ten years of practical experience and technical accumulation in the security field, Kaiyuan Network Security has developed a "one-stop software supply chain security solution" that can cope with various security detection scenarios, comprehensively protects the security of software at all stages, and facilitates digitalization Build high-quality development.