Menu

  • Alerts
  • Incidents
  • News
  • APTs
  • Cyber Decoded
  • Cyber Hygiene
  • Cyber Review
  • Cyber Tips
  • Definitions
  • Malware
  • Threat Actors
  • Tutorials

Useful Tools

  • Password generator
  • Report an incident
  • Report to authorities
No Result
View All Result
CTF Hack Havoc
CyberMaterial
  • Education
    • Cyber Decoded
    • Definitions
  • Information
    • Alerts
    • Incidents
    • News
  • Insights
    • Cyber Hygiene
    • Cyber Review
    • Tips
    • Tutorials
  • Support
    • Contact Us
    • Report an incident
  • About
    • About Us
    • Advertise with us
Get Help
Hall of Hacks
  • Education
    • Cyber Decoded
    • Definitions
  • Information
    • Alerts
    • Incidents
    • News
  • Insights
    • Cyber Hygiene
    • Cyber Review
    • Tips
    • Tutorials
  • Support
    • Contact Us
    • Report an incident
  • About
    • About Us
    • Advertise with us
Get Help
No Result
View All Result
Hall of Hacks
CyberMaterial
No Result
View All Result
Home News

Oasis Propose Standardize Product Lifecycles

May 1, 2025
Reading Time: 2 mins read
in News
FBI Dismantled LabHost’s PhaaS Network

A coalition of major tech companies including Cisco, Microsoft, Dell, IBM, Oracle, and Red Hat has introduced the draft ‘OpenEoX’ framework. The goal is to standardize how companies announce when their products will stop receiving security patches or any support. The framework was published through the OASIS standards body and addresses issues with current end-of-life (EoL) notices, which are often inconsistent and difficult to track. Without a standardized way to manage these announcements, companies face significant cybersecurity risks from outdated systems, especially those embedded in complex supply chains or critical infrastructure.

The OpenEoX framework proposes a solution by defining a shared, machine-readable format for tracking product lifecycles. This standard would include four key checkpoints: General Availability, End of Sales, End of Security Support, and End of Life. These milestones are meant to be clearly published and easily accessible to users, helping security teams maintain visibility over supported and unsupported systems. The coalition believes that this will streamline tracking and decision-making, reducing the burden on vendors and increasing efficiency for security teams, auditors, and customers alike.

The OpenEoX initiative primarily focuses on software and hardware products, but the authors suggest it could also apply to AI models in the future.

The proposal integrates with existing tools like Software Bill of Materials (SBOMs) and security advisories. It aims to enable automated tracking and risk assessment regarding product lifecycles. This will help organizations avoid running obsolete or vulnerable systems without understanding the associated risks. The draft framework aims to make lifecycle management a collaborative process across vendors, open-source maintainers, and customers.

Although still in its early stages, the OpenEoX initiative is open to public feedback and participation from various industry stakeholders.

The coalition seeks input before it finalizes the framework and submits it as a full OASIS standard. The draft paper outlines the coalition’s vision for a unified approach to managing product lifecycles and addressing the growing cybersecurity concerns associated with outdated systems. It hopes to create a foundation for broader adoption, enhancing overall product security across industries.

Reference:

  • OpenEoX Framework Aims to Standardize End of Life Product for Better Security
Tags: April 2025Cyber NewsCyber News 2025Cyber threats
ADVERTISEMENT

Related Posts

Google Fined For Cookie Violations

Google Fined For Cookie Violations

September 4, 2025
Google Fined For Cookie Violations

Youtube Cracks Down On Password Sharing

September 4, 2025
Google Fined For Cookie Violations

Moscow Hires Hackers Behind School Breach

September 4, 2025
Disney Pays 10 Million Over Kids Data

Disney Pays 10 Million Over Kids Data

September 4, 2025
Disney Pays 10 Million Over Kids Data

Cloudflare Blocks Record DDoS Attack

September 4, 2025
Disney Pays 10 Million Over Kids Data

Varonis Acquires Email Security Firm

September 4, 2025

Latest Alerts

CISA Flags TP Link Router Flaws

Lazarus Hackers Exploit ZeroDay, Deploy Rats

Google Patches 120 Flaws In Android

WhatsApp Scam Lets Hackers Hijack Chats

Malicious Npm Package Mimics Nodemailer

Android Droppers Turn Into Malware Tools

Subscribe to our newsletter

    Latest Incidents

    Salesloft Drift Attacks Hits Vendors

    Jaguar Land Rover Hit By Cyber Incident

    Hackers Use Grok Ai To Spread Malware

    Austria Ministry Reports Email Breach

    Hackers Breach Fintech In Bank Heist Try

    Ransomware Hits Pennsylvania AG Office

    CyberMaterial Logo
    • About Us
    • Contact Us
    • Jobs
    • Legal and Privacy Policy
    • Site Map

    © 2025 | CyberMaterial | All rights reserved

    Welcome Back!

    Login to your account below

    Forgotten Password?

    Retrieve your password

    Please enter your username or email address to reset your password.

    Log In

    Add New Playlist

    No Result
    View All Result
    • Alerts
    • Incidents
    • News
    • Cyber Decoded
    • Cyber Hygiene
    • Cyber Review
    • Definitions
    • Malware
    • Cyber Tips
    • Tutorials
    • Advanced Persistent Threats
    • Threat Actors
    • Report an incident
    • Password Generator
    • About Us
    • Contact Us
    • Advertise with us

    Copyright © 2025 CyberMaterial