Navigation path

3.69/5 | 16 votes

Results of the EU-FOSSA survey

5/5 | 2 votes |
Which solution will we audit?


Between 17 June and 8 July, you sent the EU-Fossa project 3282 answers, to help us choose which open source software to audit.

First, thank you very much for the many interesting and encouraging comments!


This pie-chart aggregates the result of your input:

This pie-chart aggregates the result of the Survey input.

The detailed survey results are available in the ODS spreadsheet attached to this post. The document will include all the comments and suggestions submitted in the survey.

As explained in the survey, we used two criteria to make a choice:

  • how much the software is used inside and outside of the EU institutions; and
  • how critical the software is for the institutions and its users.

Decision matrix

Based on your comments, we narrowed down the list of software solutions to two. The first - Apache HTTP Server - is related to web infrastructure. The second – Keepass - is an application used directly by many users.

Our next steps include automatic and manual code review. You can read about the methodogy here:

We will keep you informed on our progress.

Again, thanks for your contribution!



Andy C.
Posted by Andy C. on November 30, 2016 at 19:28

OMG, I haven’t even listened the name of many of the open source software mentioned in the list.
Click here

Posted by David Vantyghem on July 21, 2016 at 7:43

Why choosing KeePass and not KeePassX ? KeePass is using the .NET Framework, you will find security holes in .NET and then ? Nothing. KeePass is not really multi-platform. KeePassX is really multi-Plateform and proprietary software independant.