Loading...
Skip to main content

Like many websites, BSA’s websites use cookies to ensure the efficient functioning of those websites and give our users the best possible experience. You can learn more about how we use cookies, and how you can change your browser's cookie settings, in our cookies statement. By continuing to use this site without changing your cookie settings, you consent to our use of cookies.

X

NOV 09, 2021 | US

NIST Workshop Participants Raise Concerns Over Conformance for Software Security Standards, Use of Artifacts

Inside Cybersecurity, November 9, 2021

By Sara Friedman

NIST officials and industry leaders discussed different approaches for how conformance can be determined without reaching for a distinct conclusion on the best possible outcome, at a NIST workshop on Monday to gather feedback on upcoming executive order requirements.

BSA asks how “how software developers would demonstrate conformance with the practices or tasks identified” in the SSDF.

“Once NIST (and subsequently OMB pursuant to Section 4(k) of the EO) determines the requirements, how will the US Government determine if software conforms to its requirements, and who will attest that conformance has been demonstrated?” BSA commented. “If self-attestation is insufficient and a third-party is required, will NIST act as the third party and if not, what organization will?”

Read More >>

Original Posting: https://insidecybersecurity.com/daily-news/nist-workshop-participants-raise-concerns-over-conformance-software-security-standards

ABOUT BSA

The Business Software Alliance (www.bsa.org) is the global trade association of the enterprise software industry, representing companies that are leaders in artificial intelligence, cybersecurity, cloud computing, and other cutting-edge technologies. We work in over 20 markets in the US, Europe, and Asia, advocating for policies that build trust in technology so that every industry sector and the public can benefit from innovation. BSA also supports its members and their customers by raising awareness of the risks of unlicensed software use and the benefits of software asset management, driving license compliance and software adoption around the world through sound IT procurement.

MEDIA CONTACTS

Michael O’Brien

For Media Inquiries

MEDIA CONTACTS

Media Inquiries

MEDIA CONTACTS

Media Inquiries

CONTACTO DE PRENSA

Media Inquiries