Security Requirements for Software Vendors
In May of 2021, the Biden administration released an executive order on cybersecurity that outlines new security requirements for vendors selling software to the U.S. government. These requirements include security testing in the development process and a bill of materials for the open source libraries in use, so known vulnerabilities are disclosed and able to be tracked in the future. Although the order only impacts companies that sell software to the federal government in the near term, it also requires the development of a pilot program that would eventually change security requirements for all software vendors.
Learn More About Software Security From Gartner
Executive Order Media Commentary From Veracode
Veracode's Sam King and Chris Wysopal Discuss the Executive Order
Sam King, CEO
- What is Most Noteworthy?
- What the Labeling Pilot Program Indicates About the Future of Software Security
- What Good Looks Like for Software Security
- Advice for Software Vendors
Chris Wysopal, Founder