Log4j, Apache, and the Future of Open Source Software | RSAC Conference

Skip to Main Content

Top-Rated Sessions from RSAC 2026 now on demand. Explore.

Questions?

Broadcast on April 14, 2022 in Webcasts

Log4j, Apache, and the Future of Open Source Software

April 14, 2022 | 11:00 AM PT | 2:00 PM ET

The Apache Software Foundation has had a rough time recently. First there was the Log4j 0-day. Then the patch (2.15.0) they released for that had a vulnerability of its own. Not long after, two serious (one high, one critical) flaws in their web server project. Unsurprisingly, some have used these issues as an argument for why open source is less secure than commercial counterparts. If we’ve learned anything since the initial Log4j disclosure, it’s the importance of software integrity -- but software integrity is not achieved via exclusion of open source tools from enterprise use. Join this panel of industry experts who will debate the issues of software vulnerabilities, the challenges of software integrity, and the future of open source.

Access This and Other RSAC Webcasts with your Free RSAC Membership

Your RSAC^™ Membership also includes AI-powered summaries and slides for Conference presentations, Group Discussions with experts, and more.

Watch Now >>

Contributors

Doug Burks

Founder and CEO, Security Onion

Kelley Misata

Chief Trailblazer & President, Sightline Security and OISF

Ed Moyle

CISO, FiT

Chris Wysopal

Co-Founder & Chief Security Evangelist, Veracode

Lenny Zeltser

Security Builder & Leader,

View More Webcasts

Share With Your Community