Kaspersky to open security code for partners

By PTI Published on Oct 24, 2017 12:52 PM IST

Moscow: Russian cyber security firm Kaspersky said it will open "transparency centres" in Asia, Europe and the US which will provide trusted partners access to reviews of company's software.

This initiative is part of its Global Transparency Initiative scheme -- a move which comes following allegation of espionage by the US government.

The company said it plans to establish the first of the three transparency centres in 2018 to "address any security issues together with customers, trusted partners and government stakeholders".

"The centres will serve as a facility for trusted partners to access reviews on the company's code, software updates and threat detection rules, along with other activities. The transparency centres will open in Asia, Europe and the US by 2020," Kaspersky said in a statement.

The US has asked federal agencies to stop using Kaspersky software on concerns of possible ties between the company's officials, the Kremlin and Russian intelligence services, which it said could potentially risk US national security.

The move comes amid heightened tensions between Russia and the US over allegations of Moscow interfering in last year's US presidential election. Kaspersky had denied the allegations.

"Reduced cooperation among countries helps the bad guys in their operations, and public-private partnerships don't work like they should. The internet was created to unite people and share knowledge. We need to reestablish trust in relationshipsbetween companies, governments and citizens. That's why we're launching this Global Transparency Initiative," Kaspersky Lab, Chairman and CEO, Eugene Kaspersky said.

He said cyber security has no borders but attempts to introduce national boundaries in cyberspace is counter- productive and must be stopped.

The Russian cyber firm said that in addition to launching initial phase of its Global Transparency Initiative, Kaspersky Lab will engage with its stakeholders and the information security community to determine the next phase of the initiative in the second half of 2018 for generating higher transparency in business.

Kaspersky said it will start an independent review of the company's source code, software updates and threat detection rules by first quarter of 2018.

It will also commence an independent assessment of the company's secure development lifecycle processes, and its software and supply chain risk mitigation strategies will start by first quarter 2018.