NIST seeks collaborators for supply chain project focused on secure software development

The National Institute of Standards and Technology is launching a new project exploring how to design secure software in a “cloud-native way,” using DevSecOps practices that can inform how an organization uses self-attestation and conformance to demonstrate alignment with key NIST supply chain publications.

NIST’s National Cybersecurity Center of Excellence issued a Federal Register notice on Monday asking for letters of interest from collaborators who can bring “relevant security capabilities” to the new project and are willing to enter...