Do You Know What’s in Your Software?
In the wake of several high-profile cyberattacks, the federal government wants to shore up the security of its software supply chain. A recent executive order aims to raise the standard of software the government buys based on basic cyber hygiene practices, auditing capabilities, and transparency measures, like requiring a software bill of materials. Two experts explain the merits of some approaches and why there’s no silver bullet.
