US Government Extends Software Security Deadline Because Vendors Aren't Ready
1 min read
Jun 18, 2023
The Biden Administration has extended the deadline for federal agencies to submit documentation proving that the software they use was developed with appropriate security practices, because the form for reporting on such matters isn't complete.
Since coming into office in 2021, the Administration has focused on cybersecurity for the both the government and private sectors, with an emphasis on hardening the software supply chain in the wake of such incidents as the SolarWinds attack.
One of the Administration's tactics was requiring software vendors to attest to their use of federal software development standards defined by the National Institute of Standards and Technology's (NIST's) Secure Software Development Framework [PDF].
The deadline for government agencies to collect attestation certificates from their vendors was September 14. But that dog ain't going to hunt just yet.
Related Articles
1 - 0 min read
2023’s Moments That Marked the Open-Source World
1 - 0 min read
New GhostRace Attack Impacts Major CPU, Software Vendors
