Cybersecurity
OMB reverses Biden-era software attestation order
A new executive branch memorandum instead allows agencies to lean on software bills of materials, or SBOMs, in lieu of a universal attestation framework.
Acquisition
House passes measure to help reduce federal software spending
For the second straight Congress, lawmakers in the lower chamber have advanced legislation to impose heightened transparency requirements on government software spending.
Ideas
Five strategies for government software modernization
COMMENTARY | There's more than one way to modernize.
Ideas
Transforming federal IT: best practices for driving software innovation
Software development is accelerating.
Ideas
Attract — and retain — talent with a better developer experience
Cloud-native orgs attract the right kind of tech talent.
Ideas
High-quality government software starts with efficacy, not efficiency
How will the government deliver high-quality, secure software that creates measurable outcomes? Not simply through efficiency.
Policy
Here are the tech bills the 118th Congress passed right before the new session
Some proposed tech legislation didn’t make it into law.
Digital Government
House passes SHARE IT Act aimed at custom code in government
Agencies could save money if they shared such code, lawmakers say.
Ideas
How software reuse and extension can accelerate digital transformation for agencies
Practical tips for improving digital transformation.
Acquisition
Army unveils draft for $10B software development competition
The Army has doubled the maximum number of awardees from its prior intent and shed some more light on how the downselect could work.
Cybersecurity
Nearly 200 firms have signed pledge to build more secure software, top cyber official says
The initial tally began at around 70 companies when CISA first headlined the initiative at RSA Conference in San Francisco.
Cybersecurity
How the CrowdStrike outage carved out new opportunities for hackers
Former U.S. officials and security practitioners are wondering how a defective CrowdStrike patch for Windows systems fell through the cracks and created more cascading security risks.
Cybersecurity
White House in talks with industry to build legal framework for software liability
As part of a broad cybersecurity strategy, the U.S. wants to create incentives for the tech industry to manufacture products and software that don’t contain major security flaws.
Cybersecurity
Linux backdoor was a long con, possibly with nation-state support, experts say
If the XZ Utils vulnerability hadn’t been caught in time, hackers would have had a “skeleton key to the world,” one analyst told Nextgov/FCW.
Ideas
How to fix the military’s software SNAFU
COMMENTARY | Too many of its apps are built on code riddled with vulnerabilities—and distributed by the Pentagon itself.
Cybersecurity
CISA rolls out secure software attestation form
A repository for software attestation submissions will be available later in March.
Cybersecurity
White House urges software developers to use memory-safe programming languages
A number of headline-making cyberattacks started with memory safety flaws, a White House cyber official said.
Cybersecurity
White House to release memory-safe code guidance in coming weeks
The U.S. and other intelligence partners have previously advised developers to adopt memory-safe programming languages.
Modernization
Cruz, Peters introduce bill prodding agencies to share custom code
The lawmakers say that existing policies on sharing such code aren’t being implemented by agencies.
Cybersecurity