PureOS Offers End-to-End Supply Chain Software and Firmware Security
According to the Forbes Article, “Cybersecurity Trends & Statistics for 2023”, there are eight macro risks to watch out for in 2023 according to the Bipartisan Policy Research Center which include the following:
Relevant to the macro risks highlighted in the article, the 2022 IBM Breach Report states that over 90% of all breaches are related to insider errors and/or insider attacks, including those associated with the supply chain.
Gartner predicts that “by 2025, 45% of organizations worldwide will have experienced attacks on their software supply chains, a three-fold increase from 2021.”
According to the 2022 IBM Breach Report, the average cost of a breach globally exceeds $4.5 million, in the U.S. a breach can exceed $10 million dollars.
However, there are a few low-cost best practices companies and government agencies can implement to eliminate or mitigate against such threats.
Make sure all open-source development is supported by a Software Bill of Materials (SBoM) according to the U.S. Security and Infrastructure Agency (CISA).
As a best practice associated with an enterprise strategy includes vetting U.S. based operating system, application, and software vendors to see which vendor can provide optimum security.
Additionally, U.S. based manufacturers of telecommunication devices, such as smartphones, and hardware such as PCs and servers also need to be vetted.
At Purism we are solving for threats associated with supply chain security by developing a secure OS, PureOS which is a 100% free operating system (OS) that supports smartphones, PCs, and servers manufactured by Purism.
The advantages PureOS offers includes the ability to audit the firmware and software to identify backdoors, malicious code, and security bugs.
Purism also offers a secure basic input output system (BIOS) by overwriting the original firmware with Purism’s own “Coreboot” for an added layer of security.
Purism supports “Reproducible Builds” a process that can prevent vulnerabilities or backdoors from being injected into the code during the compilation process allowing multiple parties to verify the code.
These are just a few of the unique security features that support PureOS.
Model | Status | Lead Time | ||
---|---|---|---|---|
Librem Key (Made in USA) | In Stock ($59+) | 10 business days | ||
Librem 5 | In Stock ($699+) 3GB/32GB | 10 business days | ||
Librem 5 COMSEC Bundle | In Stock ($1299+) Qty 2; 3GB/32GB | 10 business days | ||
Liberty Phone (Made in USA Electronics) | Backorder ($1,999+) 4GB/128GB | Estimated fulfillment early November | ||
Librem 5 + SIMple (3 GB Data) | In Stock ($99/mo) | 10 business days | ||
Librem 5 + SIMple Plus (5 GB Data) | In Stock ($129/mo) | 10 business days | ||
Librem 5 + AweSIM (Unlimited Data) | In Stock ($169/mo) | 10 business days | ||
Librem 11 | Backorder ($999+) 8GB/1TB | Estimated fulfillment mid-October | ||
Librem 14 | In Stock ($1,370+) | 10 business days | ||
Librem Mini | Backorder ($799+) | Estimated delivery November | ||
Librem Server | In Stock ($2,999+) | 45 business days |