New York, USA and Bangalore, India – March 15, 2022: Wipro Limited (NYSE: WIT, BSE: 507685, NSE: WIPRO), a leading global information technology, consulting and business process services company, announced that it has joined Open Source Security Foundation (OpenSSF) on the board to help with the growing threat to the software supply chain.
The OpenSSF is a cross-industry organization housed at the Linux Foundation that brings together the world’s leading open source security initiatives to help identify and fix security vulnerabilities in open source software and to develop tools, training, enhanced research, best practices, and vulnerability disclosure. practices. In addition to developing and contributing best practices for secure coding and software components for projects under the OpenSSF banner, Wipro management and open source experts will join other members in setting direction through committees. governance and work of the foundation.
“We are delighted to now have Wipro as a key strategic partner in the OpenSSF community,” said Brian Behlendorf, Managing Director, OpenSSF. “With their massive global technology team building open source software and their reach into many critical industries, they will be extremely helpful in driving adoption of specifications, systems, software and content coming from OpenSSF. In fact, they are already participating!”
“We are delighted to be a member of this important industry initiative and to work with our peers to help ensure the integrity of the global software supply chain,” said Andrew Aitken, Global Head of Open Source, Wipro Limited. “With representation on the Board of our CTO, Subha Tatavarti, and subject matter experts engaged in all working groups and projects, Wipro is fully committed to helping the industry develop better methods, processes and tools to identify and patch vulnerabilities, and our goal is to improve and share secure coding best practices with the community to address the growing threat to our software supply chain.”
Wipro’s open source and cybersecurity experts currently contribute to the six key working groups and projects within OpenSSF, engaging with community members to create use cases and experience-based insights to broaden the scope of future offerings. Among these are:
The Sigstore project (composed of the Cosign, Rektor, and Fulcio sub-projects) extends current code signing capabilities to support a wider range of pipeline tools and integrate automation of code signing validation by as standard practice. Wipro’s contribution is to Cosign, where we create automation scripts for use with popular CICD pipeline tools to verify the code signature of Docker containers; Helm Charts, Tekton Bundles and others, to ensure that no alterations or updates have been made after creation; and Rektor, where we will provide documentation on using Rektor APIs for log data retrieval to provide appropriate metrics that will help in making decisions about the trust, acceptance, and validity of signed metadata in the system.
Project SLSA: Builds a security framework, standards checklist, and controls to prevent tampering, improve integrity, and secure packages and infrastructure in projects. Wipro identifies and tests processes and tools to increase automation of software supply chain security standards and promote adoption of the framework in the industry.
Wipro is also engaged in related external projects including OpenChain (ISO standard for open source license compliance) and SPDX (ISO standard for SBOM information reporting). Wipro’s involvement in these projects, combined with its experience working with companies in all geographies and industries, brings valuable insights to the OpenSSF working groups, especially regarding best practices and vulnerability disclosures.
About Wipro Limited
Wipro Limited (NYSE: WIT, BSE: 507685, NSE: WIPRO) is a leading global information technology, consulting and business process services company. We harness the power of cognitive computing, hyper-automation, robotics, cloud, analytics and emerging technologies to help our clients adapt to the digital world and succeed. A company recognized globally for its comprehensive portfolio of services, strong commitment to sustainability and good corporate citizenship, we have more than 220,000 employees dedicated to serving customers on six continents. Together, we discover ideas and connect the dots to build a better and bolder future.
Sandeep Deb Varman
The forward-looking statements contained herein represent Wipro’s beliefs regarding future events, many of which are inherently uncertain and beyond Wipro’s control. Such statements include, but are not limited to, statements regarding Wipro’s growth prospects, future financial results of operations, and plans, expectations and intentions. Wipro cautions readers that the forward-looking statements contained herein are subject to risks and uncertainties that could cause actual results to differ materially from those anticipated by such statements. These risks and uncertainties include, but are not limited to, risks and uncertainties regarding fluctuations in our earnings, revenues and profits, our ability to generate and manage growth, proposed corporate actions, intense competition in services our ability to maintain our cost advantage, salary increases in India, our ability to attract and retain highly skilled professionals, time and cost overruns on fixed-price and fixed-term contracts, concentration of customers, immigration restrictions, our ability to manage our international operations, reduced demand for technology in our core areas of focus, disruptions to telecommunications networks, our ability to complete and integrate potential acquisitions , liability for damages on our service contracts, the success of the businesses in which we perform read strategic investments, withdrawal of government tax incentives, political instability, war, legal restrictions on raising capital or acquiring companies overseas, unauthorized use of our intellectual property and general economic conditions affecting our business and industry. Conditions caused by the COVID-19 pandemic could reduce technology spending, negatively affect demand for our products, affect the rate of customer spend and could negatively affect our customers’ ability or willingness to purchase our offerings, delay purchasing decisions of prospective customers, affect our ability to provide on-site consulting services and our inability to deliver to our customers or delay the delivery of our offerings, which could adversely affect our future sales, results operations and our overall financial performance. Our operations may also be adversely affected by a range of external factors related to the COVID-19 pandemic that are beyond our control. Additional risks that could affect our future results of operations are more fully described in our filings with the United States Securities and Exchange Commission, including, but not limited to, annual reports on Form 20- f. These documents are available at www.sec.gov. We may, from time to time, make additional written and oral forward-looking statements, including statements contained in the company’s filings with the Securities and Exchange Commission and our reports to shareholders. We do not undertake to update any forward-looking statements that may be made from time to time by us or on our behalf.