Software Development

Senators Try Again to Advance Software License Bill

Sens. Gary Peters (D-Mich.) and Bill Cassidy (R-La.) have brought back the Strengthening Agency Management and Oversight of Software Assets Act with a few new changes after the proposal came up short last fall.

National Cyber Strategy Seeks to Shift Burden from Consumers to Tech Firms

The strategy calls for Congress to pass legislation that would “shift liability onto those entities that fail to take reasonable precautions to secure their software.”

CISA Director Calls Out Industry Using Consumers as Cyber 'Crash Test Dummies'

The head of the Cybersecurity and Infrastructure Security Agency said technology companies need to be more proactive when it comes to promoting safety and security.

Won’t Get Fooled Again?

COMMENTARY | In the world of cybersecurity, the more things change the more they stay the same. 

Send Me Software, Not Hardware, Navy Infowar Leader Says

“Boxes of computers” aren’t so helpful aboard space-limited ships, Rear Adm. Doug Small said.

NASA Spent $35 Million on ‘Wasteful’ Software Licenses and Fees, Report Says

NASA’s current software management operations put it years away from achieving a centralized and consolidated enterprise computing model, according to its inspector general.

Governments View Open Source as Critical for Enhancing Digital Services, Experts Say

The U.S. government is “still in the process of organizing and coordinating” its own strategy around the use of open source software, according to a CISA official.

Defense Logistics Agency to Shift Warehouse Management to Commercial Software

The agency wants to modernize its distribution and warehouse management systems but says it can’t do that with 20-year-old government-built technology.

The Federal Government is Moving on Memory Safety for Cybersecurity

The issue of how coding languages might support software developers’ management of memory has recently gotten attention from the National Security Council, the Cybersecurity and Infrastructure Security Agency and Congress.

Cyber Director’s Preview of National Strategy Highlights Federal Software Procurement

The national cyber director also indicated plans to rely on feedback from members of the software industry who are working on recommendations for “streamlining” sector-specific regulations.

Trade Org Urges OMB to ‘Harmonize’ Secure Software Development Practices

The Information Technology Industry Council asked OMB to clarify a memorandum that was creating challenges for software producers.

Latest Guidance Outlines Customer Responsibilities for Software Security

The guide provides recommendations throughout the product lifecycle, from procurement to deployment.

CISA, NSA and Industry Outline Security Responsibilities of Software Suppliers

New guidance from the federal agencies—and major companies serving the government—tries to distinguish between the security duties of software developers, suppliers and consumers.

Agencies Shouldn’t 'Just Trust' Software Vendors' Security Assurances, IG Warns

NIST advisors debating the merits of OMB’s policy on software vendors’ “self-attestation” to secure development practices found common ground on a need for audits and testing.

Senators’ Plan to Secure Open Source Software Involves Agencies Using More of It

The discovery of exploitable weaknesses in Log4j is resurfacing a 6-year-old push to save taxpayers money by calling on agencies to embrace open-source code.