The Department of Homeland Security has suggested striking significant passages from a draft White House policy on open software out of concern that baring too much source code will increase the government’s vulnerability to hacking.
Many private security firms don’t publish their source code because it allows attackers to “construct highly targeted attacks against the software” or “build-in malware directly into the source code,” DHS said in comments posted to GitHub. The comments were attributed to DHS’ CIO office.
