Feed: Slashdot
Feed Link: https://slashdot.org/
---

Title: Pentagon Targets Open Source Security Risks in Software Procurement
Overhaul

Link: https://news.slashdot.org/story/25/05/06/2302...

The Department of Defense is revamping its "outdated" software procurement
systems through a new Software Fast Track initiative. The SWFT program aims
to reform how software is acquired, tested, and authorized with security as
the primary focus. "Widespread use of open source software, with
contributions from developers worldwide, presents a significant and ongoing
challenge," DoD CIO Katie Arrington wrote in the initiative memo. The DoD
currently "lacks visibility into the origins and security of software code,"
hampering security assurance efforts. The initiative will establish
verification procedures for software products and expedite authorization
processes. Multiple requests for information are running until late May
seeking industry input, including how to leverage AI for software
authorization and define effective supply chain risk management requirements.
The push comes amid recent DoD security incidents, from malware campaigns
targeting procurement systems to sensitive information leaks.

Read more of this story at Slashdot.

---
VRSS v2.1.180528