Biden Cybersecurity Order’s Biggest Impact: Software Supply Chain
Biden Cybersecurity Order’s Biggest Impact: Software Supply Chain
Alex Iftimie and Miriam Wugmeister authored an article for Bloomberg Law covering U.S. President Joe Biden’s recent executive order on cybersecurity, which directs the National Institute of Standards and Technology to establish guidelines for secure software development for government suppliers that are likely to become private sector industry standards.
“These standards will have far-reaching impact because the federal government buys many of the same software products that the rest of us use,” the authors wrote. “The government’s software vendors include hundreds of companies… And, because software developers are likely to use one software development process across their organization and products, all private-sector customers will benefit from those enhancements.”
They added: “The supply-chain security rules will include baseline standards for software development environments such as the use of administratively separate build environments, multi-factor authentication, and data encryption. The rules will also require vendors to maintain a vulnerability disclosure program and make public the results of automated security checks.”
Read the full article.
Reproduced with permission. Published May 28, 2021. Copyright 2021 The Bureau of National Affairs, Inc. 800-372-1033. For further use, please visit http://www.bna.com/copyright-permission-request