Usually, whenever we talk about the NSA is to talk about the US government, espionage, data theft or computer attacks direct or indirect responsibility of this organization. And although it is true and, in addition to all of that, the organization has a great secrecy, not 100% of the time, and is that this organization has some interesting OpenSource projects, valuable contributions to the community, as we go To see below.
Since the discovery of PRISM, a global telecommunications spy program leaked by Edward Snowden in 2013, every now and then new and disturbing reports about the organization, spy reports, and even malware have appeared in the wrong hands, Has wreaked havoc worldwide, as has happened with WannaCry.
However, despite its attempts to dominate networks, the NSA has also made great free contributions to computing. For this, the organization has used the well-known GitHub platform, in which to date it has a total of 32 projects as part of the TTP (Technology Transfer Program) program, which seeks to transfer its technology to the commercial market.
The NSA’s most interesting OpenSource projects
Many projects of the agency have been between us for years and we have certainly heard about them but we did not imagine that this organization was behind them. One of the most famous examples is SECURITY-ENHANCED LINUX, or SELinux, a security mechanism that has been part of the Linux kernel since version 2.6, or SECURITY ENHANCEMENTS FOR ANDROID, the equivalent of SELinux for Android that it has in the operating system From 4.3 Jelly Bean.
In addition to this, some of the other interesting projects are:
- Certificate Authority Situational Awareness (CASA), a tool that helps protect us from unauthorized and prohibited certificates in Windows.
- Control Flow Integrity, a technology present in a large number of hardware components used to protect systems from memory corruption.
- GRASSMARLIN, a protocol that provides network security.
- Open Attestation, a project to identify and verify systems using the Trusted Platform Module (TPM).
- Redhawk SDR, a suite of tools for developing, deploying and managing real-time radio applications.
- OZONE Widget Framework (OWF), a web application to create simple lightweight widgets.
Although most of these projects are already available, the NSA also shows on its website other OpenSource projects that will soon reach GitHub. Although instinct has taught us not to trust this organization, thanks to the nature of OpenSource we have the assurance that these projects are created without malice and hide no function to dominate the world, only seek to contribute something to the community and that anyone can take advantage of this technology.
If we want to know all the projects in which the organization participates, we can do it from the following link. In addition, Information Assurance also has its OpenSource repositories of GitHub with interesting projects, which we can see in this link.
What do you think of the NSA OpenSource projects?