Inside Cybersecurity

October 3, 2022

Daily News

CISA takes on responsibilities supporting implementation of Software Bill of Materials policy for federal procurement

By Sara Friedman / September 15, 2022

The Cybersecurity and Infrastructure Security Agency is formally taking on new responsibilities to provide Software Bill of Materials guidance to agencies as they work to implement secure software requirements defined by the Office of Management and Budget.

OMB released a memorandum Wednesday establishing a self-attestation policy for software providers who sell to the federal government to ensure their software is secure based on concepts from NIST’s Secure Software Development Framework. The memo provides details on how an SBOM can...

Log in to access this content.

Not a subscriber? Sign up for 30 days free access to exclusive news and analysis on cybersecurity regulations and more.