Main pages #
- Securing your open source supply chain
- Services
- Downloads
- Due Diligence
- FAQ
- Contact
- Pilot customers
- About us
- How we work together
For enterprises #
- For enterprises
- CRA for enterprises
- DORA for enterprises
- NIS2 for enterprises
- Product liability for enterprises
For software service providers #
- For software service providers and agencies
- For web, digital, and creative agencies
- For systems integrators
- For software development companies
- For platform partners
- For MSPs and cloud service providers
For open source #
- Open source at OTTRIA
- For foundations and large projects
- For individual projects and maintainers
- Open Source Steward
Why OTTRIA #
Knowledge base #
- Knowledge base
- Audit preparation
- Cost calculation for open source governance
- What is the Cyber Resilience Act?
- Cyber insurance and open source risks
- Decision Debt
- Digital sovereignty and open source
- D&O liability and cyber legislation
- What is DORA?
- ISO/IEC 18974
- Open source has no contractual partner
- Open source supply chain security
- Who actually maintains open source?
- What is NIS2?
- The Open Source Steward under the CRA
- Patch management in open source
- The new EU Product Liability Directive
- Why your SBOM is decaying
- What is an SBOM?
- Silent fixes