Supply Chain

NIST Asks for Input on Building Secure Software

The draft framework is intended to both instruct developers on building safe tech and help IT buyers, like the government, know which companies they can trust.

  • By Jack Corrigan

Inside the Government's Open Source Software Conundrum

How do agencies make sure the crowdsourced code that underlies nearly every piece of tech on the market is safe to use?

  • By Jack Corrigan

After Executive Order, Trump Administration Puts More Pressure On Huawei

The Chinese telecom company can no longer buy U.S. tech without a waiver, Commerce Secretary Wilbur Ross announced Thursday.

  • By Aaron Boyd

Lawmakers Want Spy Agencies to Help Secure Government Tech and Elections

The Intelligence Authorization Act would increase the IC’s involvement in a number of federal tech and cyber efforts.

  • By Jack Corrigan

Trump Issues Executive Order Over Tech Threats from Foreign Adversaries

The president directed the Commerce Secretary to establish when transactions could put national security at risk.

  • By Brandi Vincent

Pentagon ‘Matchmakers’ Aim to Keep U.S. Tech Firms from Taking Chinese Money

Defense officials hope to protect cutting-edge technologies by getting innovative firms funded by U.S.-friendly investors.

  • By Marcus A. Weisgerber, Defense One

Senate Bill Would Train Federal Buyers to Spot Counterintelligence Threats

The goal is to reduce the risks of adversaries gaining entry to agencies through their supply chains.

  • By Brandi Vincent

What’s Hot In Federal Tech, Per GSA’s IT Category Lead

Bill Zielinski, head of the Information Technology Category, shares the trends he’s seeing in federal IT through thousands of ongoing acquisitions governmentwide.

  • By Aaron Boyd

Federal CISO Wants To Move Beyond ‘Whack-a-Mole’ Supply Chain Security

Sweeping bans on Kaspersky Lab, ZTE and Huawei products were the right move, but Grant Schneider thinks the government needs a more scalable approach.

  • By Jack Corrigan

Report: Weaponized PDFs on the Rise

The form of malware is targeting mostly the United States and Britain.

  • By Brandi Vincent

Holding Government Contractors Responsible for Cybersecurity Is Trickier Than It Sounds

Experts told lawmakers the ever-growing list of subcontractors is a complexifier.

  • By Brandi Vincent

China’s Cyber Prowess is Shaping How the Pentagon Buys

It's imperative for security to coincide with modernization, a Defense Department acquisition official said.

  • By Brandi Vincent

3 Steps to a More Secure Federal Supply Chain

A self-assessment is the first step in understanding where potential threats may come from.

  • By Tony Pelli

5 Ways Mobile Tech Can Optimize the Federal Supply Chain

Mobile devices can process more data and deliver richer capabilities than ever before.

  • By Chris Balcik

Justice Department Announces Indictments Against Huawei

U.S. officials say Chinese manufacturer flouted Iran sanctions, committed fraud, and stole robots.

  • By Patrick Tucker, Defense One

Understanding Today’s Mobile Software Supply Chain Risks

The reality is that supply chain risk is also a concern in the software frontier.

  • By Tim LeMaster

Senators to WMATA: How Will You Keep Next-Gen Metro Cars Safe from Foreign Tampering?

Four D.C.-area lawmakers are asking WMATA leaders to take supply chain and cybersecurity issues into account when buying the next series of Metro cars.

  • By Aaron Boyd

Lawmakers Set the Stage for the Privacy Debate

Congress also took up bills to upgrade the power grid, combat Chinese tech threats and punish robocallers.

  • By Jack Corrigan

Lawmakers Introduce Bill to Fight Chinese Tech Theft and Supply Chain Threats

The legislation would create a White House office to help the government punch back against economic espionage.

  • By Jack Corrigan

To Reduce IT Supply Chain Risk, Watch for Insider Threats and External Attackers

True or not, Bloomberg’s recent "Big Hack" article should have agencies thinking about the security of their IT systems.

  • By David Wilcox

Pentagon Considers Cybersecurity Certification for Its Contractors

It’s still unclear what would be required for certification or how much it would cost for businesses.

  • By Aaron Boyd