PUBLICATION

Securing the Software Supply Chain: Recommended Practices Guide for Customers and accompanying Fact Sheet

Related topics:

Information and Communications Technology Supply Chain Security

Supported by CISA, the National Security Agency (NSA), and the Office of the Director of National Intelligence, the Enduring Security Framework Working Group (a cross-sector, public-private working group) developed a three-part series for securing the software supply chain. This final part of the series guides software customers through the procurement, testing, deployment, and patching process; it also includes much needed guidance for software bill of materials (SBOMs).

Securing the Software Supply Chain: Recommended Practices Guide for Customers and accompanying Fact Sheet

Resource Materials

Tags

SBOM Sharing Roles and Considerations

SBOM-a-Rama February 2024 Session Presentations

Secure Software Development Attestation Form

SBOM Listening Sessions 2022

Securing the Software Supply Chain: Recommended Practices Guide for Customers and accompanying Fact Sheet

Resource Materials

Tags

Related Resources

SBOM Sharing Roles and Considerations

SBOM-a-Rama February 2024 Session Presentations

Secure Software Development Attestation Form

SBOM Listening Sessions 2022