Inside Cybersecurity

July 19, 2024

Daily News

CISA updates draft software self-attestation form to allow opportunities for revisions, address FedRAMP

By Sara Friedman / November 17, 2023

The Cybersecurity and Infrastructure Security Agency has issued a second draft of its common form for secure software self-attestation that will be used for procurement purposes, with updates addressing potential revisions for contractors and clarifying how to address open source software.

“This self-attestation form identifies the minimum secure software development requirements a software producer must meet, and attest to meeting, before software subject to the requirements of M-22-18 and M-23-16 may be used by Federal agencies. This form is used...


Log in to access this content.


Not a subscriber? Sign up for 30 days free access to exclusive news and analysis on cybersecurity regulations and more.