software bill of materials

SBOM, Software Bill of Materials

Army set to require SBOMs for new software by early next year

The Army’s software contracts will soon require vendors to provide bills of materials. The new policy applies to almost all software, except for cloud…

Read more
Amelia Brust/Federal News Networkcontracting, small business, government

NSA, CISA call on software developers, suppliers to improve open source software management practices

Read more
Amelia Brust/Federal News Networkcontracting, small business, government

SBOMs are just the start, not the end, of the software supply chain conversation

Read more
National Security Agency (NSA) logo

The NSA has advice for protecting the smallest elements in the nation’s critical infrastructure

Read more
Amelia Brust/Federal News Networkcybersecurity, intelligence, network, computers, technology

CISA, DHS eye open source software use in critical infrastructure

Read more
Amelia Brust/Federal News Networkcybersecurity

New cybersecurity guidance from the White House: A step in the right direction, but there’s more to be done

Read more
Amelia Brust/Federal News Networkcybersecurity

From Log4j to zero trust, agencies have another busy year in cyber

Read more
Amelia Brust/Federal News Networkcybersecurity, intelligence, network, computers, technology

NSA backs SBOM requirements in latest secure software advisory

Read more
Amelia Brust/Federal News Networkcybersecurity

Software developers with federal government customers must provide confirmation of NIST standards

Read more
Federal News Radio pinwheel icon

State Dept working toward SBOM adoption to improve supply chain risk management

Although there’s some disagreement over when agencies will actually start benefitting from them, many agencies are currently laying the foundation to…

Read more
Amelia Brust/Federal News Networkcybersecurity

When will SBOMs finally benefit the federal government’s software supply chain?

There’s wide consensus that SBOMs are a constructive building block for software supply chain security, perhaps especially for federal software supply…

Read more
Amelia Brust/Federal News Networkcybersecurity, intelligence, network, computers, technology

Industry associations raise alarm bells over legislating software security

Section 6722 of the 2023 NDAA would require DHS to mandate a bill of materials for technology from current and future contractors and some in industry are calling the provision problematic.

Read more