NIST, NTIA begin EO-directed exploration of how to secure software used by federal agencies

Recent publications from NIST and NTIA highlight challenges the federal government will face coming up with a definitive way to make software used by agencies more secure, while recognizing the process to define “critical software” and “SBOM” minimum elements is a work in progress.

As directed in President Biden’s May cyber executive order, the National Institute of Standards and Technology last week released two key publications -- one describing the use of critical software and the other minimum standards...