CISA chief Easterly spells out ‘secure by design’ doctrine, backed by federal purchasing power and liability changes

Tech products that are “dangerous by design” are the underlying cause of the nation’s cybersecurity challenges, CISA Director Jen Easterly asserted today, and this “normalization” of insecurity must be reversed by deploying government purchasing power and redefining liability to broadly shift responsibility toward technology manufacturers.

“In sum, we need a model of sustainable cybersecurity, one where incentives are realigned to favor long-term investments in the safety and resilience of our technology ecosystem, and where responsibility for defending that ecosystem is...