Ideas
How to think like a software factory
The Department of Defense needs to look to its own innovation hubs for lessons on how to keep up with the pace of technological change and emerging threats.
Cybersecurity
Public sector apps face widespread security challenges, report reveals
A new study found alarming security vulnerabilities across the vast majority of public applications over the last year.
Cybersecurity
How Tax Credits Could Present Near-Term Motivation for More Secure Devices
As federal officials call for tech firms to take more responsibility for the security of their products, some members of Congress and industry voices have highlighted the potential of cyber investment tax credits as an incentive.
Policy
Security a Top Priority in the Software Development Process, Report Finds
However, the government is lagging behind the private sector in using some of these tools.
Cybersecurity
Cyber Strategy Aims to Ensure Secure US Tech Design, Set International Example
Federal cybersecurity experts cited the importance of international and domestic partnerships in implementing cybersecurity standards and protocols.
Digital Government
Senators Try Again to Advance Software License Bill
Sens. Gary Peters (D-Mich.) and Bill Cassidy (R-La.) have brought back the Strengthening Agency Management and Oversight of Software Assets Act with a few new changes after the proposal came up short last fall.
Cybersecurity
National Cyber Strategy Seeks to Shift Burden from Consumers to Tech Firms
The strategy calls for Congress to pass legislation that would “shift liability onto those entities that fail to take reasonable precautions to secure their software.”
Cybersecurity
CISA Director Calls Out Industry Using Consumers as Cyber 'Crash Test Dummies'
The head of the Cybersecurity and Infrastructure Security Agency said technology companies need to be more proactive when it comes to promoting safety and security.
Ideas
Won’t Get Fooled Again?
COMMENTARY | In the world of cybersecurity, the more things change the more they stay the same.
Digital Government
Send Me Software, Not Hardware, Navy Infowar Leader Says
“Boxes of computers” aren’t so helpful aboard space-limited ships, Rear Adm. Doug Small said.
Cybersecurity
How SBOMs Can Eventually Help to Secure Government’s Software Supply Chain
No agency has yet to require them in any major way.
Modernization
Governments View Open Source as Critical for Enhancing Digital Services, Experts Say
The U.S. government is “still in the process of organizing and coordinating” its own strategy around the use of open source software, according to a CISA official.
Modernization
Defense Logistics Agency to Shift Warehouse Management to Commercial Software
The agency wants to modernize its distribution and warehouse management systems but says it can’t do that with 20-year-old government-built technology.
Cybersecurity
The Federal Government is Moving on Memory Safety for Cybersecurity
The issue of how coding languages might support software developers’ management of memory has recently gotten attention from the National Security Council, the Cybersecurity and Infrastructure Security Agency and Congress.
Cybersecurity
Cyber Director’s Preview of National Strategy Highlights Federal Software Procurement
The national cyber director also indicated plans to rely on feedback from members of the software industry who are working on recommendations for “streamlining” sector-specific regulations.
Ideas
The Federal Government is Pushing for Security-Aware Developers
But do official recommendations work in their world?
Cybersecurity
Trade Org Urges OMB to ‘Harmonize’ Secure Software Development Practices
The Information Technology Industry Council asked OMB to clarify a memorandum that was creating challenges for software producers.
Cybersecurity
Latest Guidance Outlines Customer Responsibilities for Software Security
The guide provides recommendations throughout the product lifecycle, from procurement to deployment.
Cybersecurity
CISA, NSA and Industry Outline Security Responsibilities of Software Suppliers
New guidance from the federal agencies—and major companies serving the government—tries to distinguish between the security duties of software developers, suppliers and consumers.
Cybersecurity