As we’ve mentioned before, CDR Link adheres to the Unix-like philosophy of utilizing an ecosystem of small, repurpose-able programs that handle discreet tasks well, rather than producing one monolithic thing that does many things badly.
In software, the gold standard of this philosophy is the Debian project, in which thousands of volunteers maintain small programs that, in the aggregate, combine to form the Debian (GNU-Linux) operating system. If these volunteers worked to produce a single “blob” of a operating system, like macOS or Windows, that system would be less stable, less secure, and less flexible.
CDR Link isn’t Debian, but we strive to apply the same philosophy.
CDR Link isn’t a single platform, it’s an ecoystem of interconnected technologies and data streams. Users file tickets in Zammad via extensions integrating email, web forms, Signal, WhatsApp, and Telegram. That data will be scrubbed and normalized and sent to MISP, the open-source threat sharing and analysis database. Third-party data from trusted parters will combine with ticketing data in MISP. All datasets will be made accessible for analysis and sharing with the non-technical community via a data usability and accessibility layer.
Our name for the glue joining together all of these pieces is “Leafcutter.”
Our technology work at the Center for Digital Resilience centers on development of the “CDR Link” project. Link is an ecosystem comprised of a number of open source tools that address number of current challenges facing the civil society incident responder community.
This is the tech blog for Center for Digital Resilience, where we discuss development of the CDR Link platform and related projects.