DOD Open Technology Development Guide Released!

The DOD’s second Open Technology Development Roadmap has been released: “Open Technology Development: Lessons Learned and Best Practices“. It’s a handbook for using and making open source in the DOD and the US Government, sponsored by the Secretary of Defense. It provides practical advice on policy, procurement, and good community governance, all under a Creative Commons license. I’ll be providing some more commentary later, but this is a huge step forward in the adoption of open source in the US Government.

Updated: Here’s the source document in ODF format: OTD2: Lessons Learned.


Fighting Forks

This is the ignite presentation I gave for the Mil-OSS WG2 conference today. It’s a tremendous group of sandal-shod revolutionaries who want to bring open source and the US Department of Defense together. You can sign up for the mailing list here. If you use your imagination and insert a lot of stumbling, fumbling, and false starts to this, you’ll have a pretty good idea of how it went. You can find the full presentation here. [Update: Josh posted a video of my presentation, so you don't have to imagine it.]

Open Source Pork

The adorably named “Snort” project has been the mainstay of open source intrusion detection systems for as long as I can remember. The success of Snort and its commercial wing, SourceFire, is one of the early successes of open source, especially in security. On July 5th, the Open Information Security Foundation, a consortium of companies and government agencies who want to experiment with new approaches to the IDS problem, released version 1.0 of their Suricata project. It’s great to see government agencies make use of the open source development process to collaborate with the private sector and advance technology in this important niche of the security ecosystem. But so far, the story is pretty boring.

But wait! It’s not boring at all, because at the same time as Suricata is released, the Washington Post’s Top Secret Nation series is running. A pall suddenly falls over every aspect of government, especially in security, and especially for Dana Blankenhorn of ZDNet. “Private open source security is not amused,” and neither is Blankenhorn, who is quickly becoming my favorite source of new material: