Pfsense security certification
we are currently running pfsense in several sites in Africa for our small micro-finance institutions.
In some specific countries, the legislation required our equipment to be "certified". We are then being asked some (dummy) questions from external auditors about how open source is secure if it's 'open'. ;)
Is there anything related to that question regarding pfsense?
Thanks a lot in advance
There is some info here: