CISA official illuminates path forward for eliminating recurring software vulnerabilities

The Cybersecurity and Infrastructure Security Agency’s work to promote best practices for secure software development will move forward with a focus on eliminating vulnerabilities that have plagued the software ecosystem for over 15 years, according to senior technical advisor Bob Lord.

“One of the things we have to do is get out of the world of thinking about things as ‘Whack-a-Mole’ – just swatting down the individual defect as customers report it – and figure out how to eliminate entire...