NSF Safe-OSE Funding for Open-Source Ecosystem Security Research

Safety, Security, and Privacy of Open-Source Ecosystems

Agency: U.S. National Science Foundation

Assistance Listings: 47.083 -- Integrative Activities

47.050 -- Geosciences

47.074 -- Biological Sciences

47.041 -- Engineering

47.076 -- STEM Education (formerly Education and Human Resources)

47.070 -- Computer and Information Science and Engineering

47.084 -- NSF Technology, Innovation, and Partnerships

47.075 -- Social, Behavioral, and Economic Sciences

47.079 -- Office of International Science and Engineering

47.049 -- Mathematical and Physical Sciences

Last Updated: May 30, 2025 View version history on Grants.gov

Description

Vulnerabilities in an open-source product and/or its continuous development, integration and deployment infrastructure can potentially be exploited to attack any user (human, organization, and/or another product/entity) of the product. To respond to the growing threats to the safety, security, and privacy of open-source ecosystems (OSEs), NSF is launching theSafety, Security, and Privacy for Open-Source Ecosystems(Safe-OSE) program. This program solicits proposals from OSEs, including those not originally funded by NSF’s Pathways to Enable Open-Source Ecosystems (POSE) program,... to address significant safety, security, and/or privacy vulnerabilities, both technical (e.g., vulnerabilities in code and side-channels) and socio-technical (e.g., supply chain, insider threats).

Although most open-source products are software-based, it is important to note that Safe-OSE applies to any type of OSE, including those based on scientific methodologies, models, and processes; manufacturing processes and process specifications; materials formulations; programming languages and formats; hardware instruction sets; system designs or specifications; and data platforms. The goal of the Safe-OSE program is to catalyze meaningful improvements in the safety, security, and privacy of the targeted OSE that the OSE does not currently have the resources to undertake. Funds from this program should be directed toward efforts to enhance the safety, security, and privacy characteristics of the open-source product and its supply chain as well as to bolster the ecosystem’s capabilities for managing current and future risks, attacks, breaches, and responses. Show full description

Eligibility

Eligible applicants

Miscellaneous

• Other

Additional information

*Who May Submit Proposals: Proposals may only be submitted by the following:
-For-profit organizations: U.S.-based commercial organizations, including small businesses, with strong capabilities in scientific or engineering research or education and a passion for innovation.
-Non-profit, non-academic organizations: Independent museums, observatories, research laboratories, professional societies and similar organizations located in the U.S. that are directly associated with educational or research activities.
-State and Local Governments
-Tribal Nations: An American Indian or Alaska Native tribe, band, nation, pueblo, village, or community that the Secretary of the Interior acknowledges as a federally recognized tribe pursuant to the Federally Recognized Indian Tribe List Act of 1994, 25 U.S.C. §§ 5130-5131.
-
Institutions of Higher Education (IHEs) - Two- and four-year IHEs (including community colleges) accredited in, and having a campus located in the US, acting on behalf of their faculty members.

*Who May Serve as PI:

For Institutions of Higher Education:

By the submission deadline, any PI, co-PI, or other Senior/Key Personnel must hold either:
- a tenured or tenure-track position, or
- a primary, full-time, paid appointment in a research or teaching position, or
- a staff leadership role in an Open-Source Program Office or equivalent position
at a U.S.-based campus of an Institution of Higher Education (see above), with exceptions granted for family or medical leave, as determined by the submitting institution.

Individuals with primary appointments at overseas branch campuses of U.S. institutions of higher education are not eligible.Researchers from foreign academic institutions who contribute essential expertise to the project may participate as Senior/Key Personnel or collaborators but may not receive NSF support.

For all other eligible proposing organizations:

The PI must be an employee of the proposing organization who is normally resident in the US and must be acting as an employee of the proposing organization while performing PI responsibilities. The PI may perform the PI responsibilities while temporarily out of the U.S.

Individuals withprimaryappointments atnon-U.S.basednon-profit ornon-U.S.basedfor-profit organizations are not eligible.

Grantor contact information

Description

NSF grants.gov support
grantsgovsupport@nsf.gov

Email

If you have any problems linking to this funding announcement, please contact the email address above.

grantsgovsupport@nsf.gov

Documents

No documents are currently available.

Link to additional information

NSF Publication 24-608

Closing: April 28, 2026

Application process

This site is a work in progress. Go to www.grants.gov to apply, track application status, and subscribe to updates. View on Grants.gov

Award

$15,000,000

Program Funding

--

Expected awards

$--

Award Minimum

$--

Award Maximum

Funding opportunity number:

24-608

Cost sharing or matching requirement:

No Funding instrument type:

Grant

Opportunity Category:

Discretionary

Opportunity Category Explanation:

-- Category of Funding Activity:

Science technology and other research and development

Category Explanation:

--

History

Version:

4

Posted date:

September 20, 2024

Archive date:

May 27, 2027