October 25, 2020
Commerce’s Friedman: Software supply chain transparency crucial to security
Mapping out the software supply chain can be useful to help detect vulnerabilities quicker and fix flaws in software systems, according to Allan Friedman, who is leading a closely watched software transparency effort at the Commerce Department’s National Telecommunications and Information Administration.
NTIA’s recent work to create a Software Bill of Materials through a multistakeholder process is one attempt to understand how the different components that go into software are interconnected.
The initiative directed by Friedman is already showing promise...