Attack on SolarWinds could have been countered by reproducible builds

Justin Cappos justincappos at gmail.com
Tue Dec 22 16:01:42 UTC 2020


Glad to hear it!  We need to get more awareness and this seems a great way
to do it!

Justin

On Tue, Dec 22, 2020 at 8:37 PM Chris Lamb <chris at reproducible-builds.org>
wrote:

> Hi Justin,
>
> > On another note, I would say this is an ideal time to engage the
> > broader academic / open source communities about reproducible builds.
>
> As it happens, Stefano Zacchiroli recently suggested to me that we
> write a paper together that we would first offer to IEEE Software. We
> got into a good routine and submitted to IEEE about a fortnight ago.
>
> It's aimed a more general audience, first defining the problem and
> then providing some insight into the challenges of actually making
> real-world software reproducible.
>
> We then use various experiences of the Reproducible Builds project to
> make large-scale software collections/supply-chains/ecosystems
> reproducible, and we also describe the affinity between reproducibility
> efforts and quality assurance (QA).
>
> More news when we have it, of course...
>
>
> Regards,
>
> --
>       o
>     ⬋   ⬊      Chris Lamb
>    o     o     reproducible-builds.org 💠
>     ⬊   ⬋
>       o
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.reproducible-builds.org/pipermail/rb-general/attachments/20201223/574ef556/attachment.htm>


More information about the rb-general mailing list