Key recommendations from the NIST’s latest guidance and why they are relevant to modern organizations developing and delivering software. Software supply chain (SSC) attacks continue to be one ...

In response to this and other attacks, the Biden Administration issued an executive order in 2021 that directed NIST to develop guidance to enhance the security and integrity of the software supply ...

Hope for the best; prepare for the worst. Software supply chain security is vital to your business. Awareness, proactive measures and continuous vigilance are crucial keys to safeguarding your ...

The EO directs the National Institute of Standards and Technology (NIST) to issue guidance “identifying practices that enhance the security of the software supply chain.”2 The NIST Secure Software ...

An SBOM makes it possible to proactively identify and manage risk across the software supply chain to maintain the quality, security and integrity of finished products.

puts the onus on the Ssecretary of Commerce and NIST to provide guidance on practices to improve software supply chain security. This guidance, according to the EO, will include “providing a ...

The CNCF’s Software Supply Chain Best Practices white paper, Gartner’s guidance on mitigating software supply chain security risks, and Microsoft’s OSS Secure Supply Chain Framework, which ...

This article, prepared in conjunction with AFCEA’s Technology Committee, is the first in a series of three articles addressing supply chain considerations of software and hardware. The second article ...

In February 2022, the National Institute of Standards and Technology (NIST) published its Software Supply Chain Security Guidance and Secure Software Development Framework setting forth the ...

In the beginning, we identified two major types of software supply chain attacks and nine minor types. The world keeps insisting on a broader definition. In the spring of 2020, it really mattered ...

The U.S. NIST Cybersecurity Framework 2.0 Semiconductor Manufacturing Community Profile delivers tailored guidance for ...

SARATOGA, Calif.--(BUSINESS WIRE)--Lineaje, the full-lifecycle software supply chain security company, today launched end-to-end capabilities that will fundamentally transform how organizations ...