| Core Infrastructure Initiative | |
|---|---|
 | |
| Mission statement | "To fund open source projects that are in the critical path for core computing functions." |
| Commercial? | No |
| Founder | Jim Zemlin |
| Established | 24 April 2014[1] |
| Funding | By donations |
| Status | Superseded by the OpenSSF |
The Core Infrastructure Initiative (CII) was a project of the Linux Foundation to fund and support free and open-source software projects that are critical to the functioning of the Internet and other major information systems. The project was announced on 24 April 2014 in the wake of Heartbleed, a critical security bug in OpenSSL that is used on millions of websites.
OpenSSL is among the first software projects to be funded by the initiative after it was deemed underfunded, receiving only about $2,000 per year in donations.[1] The initiative will sponsor two full-time OpenSSL core developers.[2] In September 2014, the Initiative offered assistance to Chet Ramey, the maintainer of bash, after the Shellshock vulnerability was discovered.[3]
The CII has since been superseded by the Open Source Security Foundation.[4]
- ^ a b "Amazon Web Services, Cisco, Dell, Facebook, Fujitsu, Google, IBM, Intel, Microsoft, NetApp, Rackspace, VMware and The Linux Foundation Form New Initiative to Support Critical Open Source Projects" (Press release). The Linux Foundation. 24 April 2014. Archived from the original on 10 June 2016. Retrieved 25 July 2016.
- ^ Cite error: The named reference
cii-faqwas invoked but never defined (see the help page). - ^ "Security experts expect 'Shellshock' software bug to be significant". The Times of India. Archived from the original on 2014-09-29. Retrieved 2014-09-29.
- ^ "Home". Core Infrastructure Initiative. Retrieved 2023-01-20.