A demand for real consequences: Sonatype’s response to CISA’s Secure by Design
2024-2-24 05:15:39 Author: securityboulevard.com(查看原文) 阅读量:13 收藏

A demand for real consequences: Sonatype's response to CISA's Secure by Design

In the fast-changing fields of cybersecurity and software development, the importance of creating secure software is more crucial than ever. Recently, my colleagues and I at the Open Source Security Foundation (OpenSSF) finalized a response to the latest Secure by Design RFC from the Cybersecurity and Infrastructure Security Agency (CISA). We discussed various best practices and case studies on Secure Software Development Life Cycle (SDLC), Threat Models for Artificial Intelligence, and the economic impact of software upgrades in response to CISA’s request.

*** This is a Security Bloggers Network syndicated blog from Sonatype Blog authored by Brian Fox. Read the original post at: https://blog.sonatype.com/a-demand-for-real-consequences-sonatypes-response-to-cisas-secure-by-design


文章来源: https://securityboulevard.com/2024/02/a-demand-for-real-consequences-sonatypes-response-to-cisas-secure-by-design/
如有侵权请联系:admin#unsafe.sh