David is an expert on open source software (OSS) and on developing secure software. His works on OSS include “Why Open Source Software / Free Software (OSS/FS)? Look at the Numbers!“, “How to Evaluate OSS/FS Programs“, “Publicly Releasing Open Source Software Developed for the U.S. Government”, and “Open Source Software is Commercial”. He also helped develop the U.S. Department of Defense (DoD) policy on OSS. His works on developing secure software include “Secure Programming HOWTO” and “Fully Countering Trusting Trust through Diverse Double-Compiling (DDC)“. Other works of his include “Software Inspection: An Industry Best Practice” and “Ada 95: The Lovelace Tutorial“.
David is the Director of Open Source Supply Chain Security at the Linux Foundation and teaches graduate courses in developing secure software at George Mason University (GMU). David has a PhD in Information Technology, a Master’s in Computer Science, a certificate in Information Security, and a B.S. in Electronics Engineering, all from George Mason University (GMU), and is a Certified Information Systems Security Professional (CISSP). He lives in Northern Virginia.
Sign up to view 0 direct reports
Get started