CII Best Practices

Trustable Software is an open project. Its goal is to understand what we can trust software to do, when specific software can be trusted, and how to protect ourselves from the risks associated with this.

To manage these risks at all levels of the supply chain, the Trustable project provides a collaborative environment where representatives from multiple industries can work together on measures to assess how and where software may be trusted and how to apply these when re-using software for new purposes.

With workstreams focusing on specific areas (Process, Public Constraints, Legal & Compliance and Insurance) and with contributors from each area reviewing and building upon each other’s work, Trustable applies open source development principles to establish frameworks for trust. We will collaborate and work with existing open projects and utilise and build on their work.

The "Trustable Software Engineering Specification" will define a set of criteria for evaluating software engineering practices, to consider whether they can be recognised as Trustable. We will define shared sets of criteria (“Public Constraints”) that deliverables should satisfy for selected domains and use cases. With an overlay of legal and compliance requirements we will consider the availability of (or need to build) a suitable insurance product or vehicle for Trustable Software.

If you would like to join our community, please visit the Contributing page to see how you can get involved.