Connect with us

Hi, what are you looking for?

Hard News Hard Hitting News Source Global Political News

Cyber Security

White House looks to shore up open source software security

The Office of the National Cyber Director wants software providers to “contribute back to the security of the open source software they depend upon.”

The federal government wants public input on how to better secure open source software — an increasingly critical component of the digital landscape. 

The White House-based Office of the National Cyber Director issued a request for information with the Cybersecurity and Infrastructure Security Agency and other federal entities on Thursday soliciting feedback on ways the federal government can support secure open source software development while strengthening software supply chains and reducing a broad range of security vulnerabilities. 

The open source development model has historically been resistant to traditional regulatory approaches, because it is fragmented and decentralized. The RFI requests insights on what areas of focus should be developed and prioritized, and what technical, policy and economic challenges should be considered as the government attempts to bolster security across the open source landscape.

Eric Goldstein, CISA’s executive assistant director of cybersecurity, and Camille Stewart Gloster, ONCD’s deputy national cyber director for technology and ecosystem security, said in a blog post that both agencies “envision an ecosystem in which creating secure open source code and regularly assessing the security of existing open source code is the norm rather than an added burden.”

“Software manufacturers that consume open source software should contribute back to the security of the open source software they depend upon,” the post read.

The RFI also seeks input on the adoption of memory safe programming languages, which mitigate memory-related vulnerabilities and reduce the likelihood of recurring coding issues. 

CISA said it will publish on an open source security strategy in the coming months while continuing to work on open source software security with ONCD, which has established an interagency working group to explore open source software security measures. Responses to the RFI are due Oct. 9.

Source: https://www.nextgov.com/cybersecurity/2023/08/white-house-looks-shore-open-source-software-security/389314/

Click to comment

Leave a Reply

Your email address will not be published. Required fields are marked *

You May Also Like

Cyber Security

Bureaucracy and dispersed authorities hinder the Cybersecurity and Infrastructure Security Agency’s ability to carry out its mission as network cyber lead, according to an...

Cyber Security

Agency resources are intended to address the longstanding challenges health systems and hospitals have faced from increasingly advanced cyberattacks. The Cybersecurity and Infrastructure Security...

Cyber Security

A top Defense Department official described the private sector as “absolutely essential” in implementing the agency’s new cyber strategy. A top Defense Department official...

Cyber Security

The nation’s cyber defense agency wants to play a key role in hardening the broader open source software security ecosystem. The Cybersecurity and Infrastructure...

Copyright © 2023 Hard News Herd Hitting in Your Face News Source | World News | Breaking News | US News | Political News Website by Top Search SEO