SEP 28, 2022 | US
Stakeholders: OMB Approach to Self-Attestation for Securing Software Offers Good Initial Method to Create Requirements
Inside Cybersecurity, September 28, 2022
By Sara Friedman
BSA’s Henry Young describes the impacts of the Office of Management and Budget’s decision to require self-attestation from companies against NIST secure software standards.
“The memo provides adequate security measures. Companies take self-attestations very seriously and no company wants to sign an inaccurate document. In limited circumstances, a third-party certification may make sense, but for the vast majority of software, an attestation should be sufficient,” Young said.
Original Posting: https://insidecybersecurity.com/share/13930
ABOUT BSA
The Business Software Alliance (www.bsa.org) is the global trade association of the enterprise software industry, representing companies that are leaders in artificial intelligence, cybersecurity, cloud computing, and other cutting-edge technologies. We work in over 20 markets in the US, Europe, and Asia, advocating for policies that build trust in technology so that every industry sector and the public can benefit from innovation. BSA also supports its members and their customers by raising awareness of the risks of unlicensed software use and the benefits of software asset management, driving license compliance and software adoption around the world through sound IT procurement.