<div dir="ltr">ORI has actively participated in ONCD workshops at DEFCON Policy Village, and as the primary representative of ORI on FCC TAC, I brought ONCD work to TAC AI/ML Working Group during our 2021-2022 term of service for incorporation into the advisory document. ORI also participated in the Open Source Software call for comments process, submitting comments in the autumn of 2023.<br><br>Here's an update about the latest work from ONCD on Open Source Software Security.<br><br clear="all"><div><div dir="ltr" class="gmail_signature" data-smartmail="gmail_signature"><div dir="ltr"><div><div dir="ltr"><div><div dir="ltr"><div dir="ltr">-Michelle Thompson<br><br><div dir="ltr"><br></div></div></div></div></div></div></div></div></div><br><br><div class="gmail_quote"><div dir="ltr" class="gmail_attr">---------- Forwarded message ---------<br>From: <strong class="gmail_sendername" dir="auto">Chang, Caroline EOP/NCD</strong> <span dir="auto"><<a href="mailto:Caroline.Chang@ncd.eop.gov">Caroline.Chang@ncd.eop.gov</a>></span><br>Date: Tue, Jan 30, 2024 at 7:22 AM<br>Subject: 2023 End of Year Report on the Open Source Software Security Initiative (OS3I)<br>To: <br>Cc: ONCD SE <<a href="mailto:ONCD-SE@ncd.eop.gov">ONCD-SE@ncd.eop.gov</a>>, Rajan, Anjana EOP/NCD <<a href="mailto:Anjana.Rajan@ncd.eop.gov">Anjana.Rajan@ncd.eop.gov</a>><br></div><br><br><div class="msg3596458702142349333">
<div lang="EN-US" link="#0563C1" vlink="#954F72" style="word-wrap:break-word">
<div class="m_3596458702142349333WordSection1">
<p class="MsoNormal">Dear colleagues, <u></u><u></u></p>
<p class="MsoNormal"> <u></u><u></u></p>
<p class="MsoNormal">On behalf of the ONCD team, I’m happy to share the 2023 End of Year Report on the Open-Source Software Security Initiative. This report details the critical work that more than 15 federal agencies have done through the Open-Source Software
Initiative (OS3I) to secure the full benefits of a safe and resilient digital ecosystem. We are continuing to implement the President’s National Cybersecurity Strategy and thanks to your input, we are driving towards transformative policy change.
<u></u><u></u></p>
<p class="MsoNormal"> <u></u><u></u></p>
<p class="MsoNormal">The report also previews OS3I work for 2024. We always appreciate your continued engagement as we work with the open-source software community to strengthen the ecosystem. <u></u><u></u></p>
<p class="MsoNormal"> <u></u><u></u></p>
<p class="MsoNormal">You can read the report <a href="http://whitehouse.gov/wp-content/uploads/2024/01/Securing-the-Open-Source-Software-Ecosystem-OS3I-End-of-Year-Report-MASTERCOPY.pdf" target="_blank">
here</a> and an accompanying fact sheet <a href="https://www.whitehouse.gov/oncd/briefing-room/2024/01/30/fact-sheet-biden-harris-administration-releases-end-of-year-report-on-open-source-software-security-initiative/" target="_blank">
here</a>. Please feel free to share these with colleagues in the community you think would be interested.
<u></u><u></u></p>
<p class="MsoNormal"> <u></u><u></u></p>
<p class="MsoNormal">Best,<u></u><u></u></p>
<p class="MsoNormal">Caroline <u></u><u></u></p>
<p class="MsoNormal"><u></u> <u></u></p>
<p class="MsoNormal"><b>Caroline Chang<u></u><u></u></b></p>
<p class="MsoNormal">Deputy Assistant National Cyber Director<br>
Stakeholder Engagement <br>
Office of the National Cyber Director<b><u></u><u></u></b></p>
<p class="MsoNormal">Executive Office of the President <u></u><u></u></p>
<p class="MsoNormal">202-881-9112<u></u><u></u></p>
<p class="MsoNormal"><u></u> <u></u></p>
</div>
</div>
</div></div></div>