CSOonline

New “MITRE ATT&CK-like” framework outlines software supply chain attack TTPs

A new open framework has been launched to outline a comprehensive and actionable way for businesses and security teams to understand attacker behaviors and techniques specifically impacting the ...
FedScoop

Senators propose open source software risk framework in new bill

Lawmakers introduced a bill Thursday that would have the Cybersecurity and Infrastructure Security Agency develop a risk framework to strengthen the security of open-source software. Agencies would ...
InfoQ

Software Supply Chain Framework OSC&R Created to Help Mitigate Security Threats

A monthly overview of things you need to know as an architect or aspiring architect. Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with ...
Dark Reading

Google: Use SLSA Framework for Better Software Security

Organizations should implement the Supply Chain Levels for Software Artifacts (SLSA) framework when building software to ensure better software security and integrity, advocates Google — after the ...
TMCnet

Infosys Collaborates with CMMI Institute to Shape Enterprise AI Maturity Framework; Achieves Milestone Recognition

As a pilot participant, Infosys contributed to shaping the CMMI AI Maturity (AIM) framework – bringing enterprise-scale AI ...
Lawyer Monthly

EU Product Liability Directive Creates New AI and Software Liability Risks

The EU Product Liability Directive expands liability for AI, software and connected products, creating new compliance, ...
FedScoop

Secure Software Development Framework not evident in federal procurement yet

Companies can’t fully adhere to the federal framework for secure software development until government begins making procurement decisions based on the guidance, according to industry experts. The ...
Morningstar

Codethink Opens Early Access to IEC 61508 Mapping for the Eclipse Trustable Software Framework

EMBEDDED WORLD--Codethink today opened early access to its mapping between the Eclipse Trustable Software Framework (TSF) and IEC 61508, the international standard governing the functional safety of ...