PHP, Perl and Python pass Homeland Security test

By Robert Vamosi, CNET News.com | 2008/01/09 09:47:02

Tags: amanda, c, c++, open vpn, openpam, opensource, overdose, perl, php, programming, python, samba

Change the text size: a | A

Coverity, which creates automated source-code analysis tools, announced late Monday its first list of open-source projects that have been certified as free of security defects.

Eleven projects made the list: Amanda, NTP, OpenPAM, OpenVPN, Overdose, Perl, PHP, Postfix, Python, Samba, and TCL.

San Francisco-based Coverity, working in collaboration with Stanford University and under a contract from the Department of Homeland Security, is analysing source code to certify that open-source projects written in C, C++, and Java are secure. Coverity has not disclosed the amount of the DHS contract.

The certification was created so that companies can "select these open-source applications with even greater confidence," Coverity said.

The company uses a ladder metaphor in its certification process.

Rung 2, which was announced late Monday and is the most secure level to date, includes the 11 projects. Rung 1 now includes 86 projects. Rung 0, the lowest level, currently lists 173 projects.

In all cases, open-source vendors must fix all vulnerabilities discovered by Coverity's tools in order to move up the rungs of the security ladder.

This was published in Wide World of Web, check every Wednesday for more stories

Click here to leave your comment

Log in

News and features

Latest
Popular
Features
Most Discussed

Silverlight ready to Moonlight on Linux (23 hours, 2 minutes ago)
Ballmer on Yahoo: "We're done" (23 hours, 11 minutes ago)
Security firms slam Microsoft 'capitulation' (23 hours, 14 minutes ago)
Apple's Snow Leopard due early 2009 (23 hours, 28 minutes ago)
Sun remains silent on ANZ staff cuts
Yahoo to make BrowserPlus open-source
More news »

Blogs

Sun eye Web developers with Netbeans 6.5

Despite the recent employment axe hitting Sun the company has pushed out a new release of its Netbeans open source IDE with an eye to appeal more to Web developers. Read more »

-- posted by Brendon Chase
BarCamp buzz: Let the hacking continue

Attending last weekend's BarCamp in Sydney, it was hard to escape the conclusion that a certain "dot-com bust" flavour had seeped into the kool aid previously being drunk by Australia's web 2.0 and early stage start-up sector. Read more »

-- posted by Renai LeMay
Adobe briefly considered its own browser

Internet Explorer dominates the Web browser market, but are that many people so in love with it? Meanwhile, the Flash player dominates its segment because lots of people find it to be a terrific. So might Adobe one day decide that the next logical step is to try its hand at building its own Web browser? Read more »

-- posted by Staff