Protecting your Organization Against Maliciously Tainted and Counterfeit Products
Sally Long, Director, Open Trusted Technology Provider Forum (OTTF), The Open Group, US; and Andras Szakal, Vice President, Chief Technology Officer, IBM U.S. Federal IMT, US
The increase in sophistication of cyber-attacks has forced technology suppliers and governments to take a more comprehensive approach to risk management as it applies to product integrity and supply chain security. Customers, including governments from around the world, are beginning to seek assurances that their providers are consistently following best practices to mitigate the risk of tainted or counterfeit components making their way into a customerâ€™s critical infrastructure.
This presentation will highlight the challenges of securing the global supply chain against these two major threats and will describe how the OTTF is helping industry to meet those challenges from a global perspective. The session will illustrate the value of the Open Trusted Technology Provider Standard (O-TTPS) Mitigating Maliciously Tainted and Counterfeit Products v1.0. The O-TTPS, which is an open standard for organizational commercial best practices to enhance the security of the global supply chain and the
integrity of products throughout the COTS ICT product life cycle encompassing the following phases: design, sourcing, build, fulfillment, distribution, sustainment, and disposal - is freely available at: www.opengroup.org/bookstore/catalog/c139.htm.
Details of the O-TTPS Accreditation Program, designed to help assure conformance the standard, will also be discussed. The Accreditation Program, to be approved in October, is being conducted as a pilot now for members, with a public launch planned for the end of 2013. The public program will be available to all component suppliers, providers, and integrators around the world. This session will also provide plenty of opportunity for discussion and Q&A.
Learn about the risks of tainted and counterfeit products:
-- how they can effect you and your organization
-- what you can do to prevent them in-house and in your supply chain
-- how you can identify trusted technology providers as potential business partners
-- what your organization needs to do to become a trusted technology provider
Sally Long is the Director of The Open Group Trusted Technology Forum (OTTF), an international forum of industry providers, third party labs and governments developing standards and conformance programs to increase security in the global technology supply chain. Ms. Long has managed customer-supplier forums and collaborative development projects for over twenty years. She was the release engineering section manager for all multi-vendor collaborative technology development projects at The Open Software Foundation (OSF), in Cambridge Massachusetts. Following the merger of the OSF and X/Open under The Open Group, she served as director for multiple forums in The Open Group. Ms. Long has a Bachelor of Science degree in Electrical Engineering from Northeastern University in Boston, Massachusetts.
Andras Szakal is a VP and CTO for IBM's Federal Integrated Market Team (IMT). Andras is an IBM Distinguished Engineer, and an IBM Senior Certified Software IT Architect and an IBM Certified SOA Solution Designer. His responsibilities include developing e-Government software architectures using IBM middleware and leading the IBM federal government software IT architect team. Mr. Szakal holds undergraduate degrees in Biology and Computer Science and a Masters Degree in Computer Science from James Madison University. Mr. Szakal has been a driving force behind IBM's adoption of government IT standards and is a member of the IBM Software Group Strategy Team. Mr. Szakal represents IBM SWG on the Board of Directors of The Open Group. He is the Chair of the Open Group Trusted Technology Provider Forum.