NIST advisory board chair raises issues with establishing liability regime for software security

The federal government can effectively leverage its role as a procurer of software to produce positive security outcomes across the tech ecosystem, according to NIST Information Security and Privacy Advisory Board Chair Steve Lipner, who argues that the establishment of tort-based liability protections would impose unnecessary costs on manufacturers.

Lipner highlights President Biden’s 2021 cyber executive order and its requirements for the government to develop secure software development processes for contractors. He says in a May 14 post, “The combination...