TY - JOUR T1 - Editorial: Security (June 2008) JF - Open Source Business Resource Y1 - 2008 A1 - Dru Lavigne AB - If you google the phrase "open source security", you'll find plenty of articles which debunk the "myth" of open source security, fuel the debate of Linus' law vs. security through obscurity, or argue which type of software, proprietary or open source, is more secure. Yet, the question "which type of software is more secure?" is impossible to answer. Software security is highly dependent upon many variables: the programming language used, the practices implemented by the individual programmers, the processes imposed by the specific organization overseeing the programmers, and the configuration of the software by a particular end-user. This issue of the OSBR examines several facets of open source security. Jake Kouns from the Open Security Foundation introduces an open source project which manages a global collection of vulnerabilities, available for free use by the information security community. David Maxwell from the Coverity Scan project discusses their report on code defect trends from an analysis of several hundred open source projects, representing 55 million lines of code, through 14,000 build sessions over a two year period. PB - Talent First Network CY - Ottawa UR - http://timreview.ca/article/154 IS - June 2008 U1 - Talent First Network Dru Lavigne is a technical writer and IT consultant who has been active with open source communities since the mid-1990s. She writes regularly for O'Reilly and DNSStuff.com and is author of the books BSD Hacks and The Best of FreeBSD Basics. ER -