The White House was responding to rumors about companies placing components in hardware that could compromise communication systems. Essentially, can the supply chain for hardware manufacturing be safe?
John Zanni is the CEO at Acronis SCS and he joined host John Gilroy on this week’s Federal Tech Talk to discuss cybersecurity with an emphasis on supply chain risk management. The discussion moves from hardware getting compromised to software.
Today, much software is not written from “scratch.” Frequently, developers rely on blocks of code from software repositories or libraries. They have also seen a movement towards low code and no code systems for enabling a software solution.
Zanni asked the obvious question: Who do you trust? You could inadvertently be bringing malicious code into your system. It is one thing to do this for a small company; it’s a completely different situation for a federal agency.
During the interview, Zanni talked about standards, source code reviews and managing risk. For anyone assuming all the code they connect is safe, think again.