The Zephyr Project Marks Milestones for Security and Product-Ready Maturity
July 01, 2020
News
In a May 2020 report, NCC outlined the issues that were found and detailed how the Zephyr Project Security Committee was working to fix the issues.
The Zephyr™ Project announced it has made momentum in marking critical milestones for security and product-ready maturity. This comes after the NCC Group, a global expert in cyber security and risk mitigation, notified the Project of security issues discovered during an independent research study into Zephyr’s security posture.
“The Zephyr Project brings together a community of experts to participate on all aspects of the solution, from the standards to adopt, policies and processes to follow, and methodologies for build, test, maintenance, distribution and incident response,” said Zephyr Project governing board chair and technical product manager at Nordic Semiconductor Joel Stapleton, in a press release. “Our aim is to make a solution that developers can trust for the lifecycle of their products. This third-party research and our security team’s swift and proactive response to the vulnerabilities is the strength of open source and a testament to this community.”
In a May 2020 report, NCC outlined the issues that were found and detailed how the Zephyr Project Security Committee was working to fix the issues.
According to the release, the fixes have been backported into Zephyr’s Long Term Support (LTS) and a maintenance release published.
For more information, visit www.zephyrproject.org.