CISA, NSA, and ODNI release guidance for on Securing the Software Supply Chain for software customers
- Published: Tuesday, 22 November 2022 10:48
CISA, the US National Security Agency (NSA), and the Office of the Director of National Intelligence (ODNI), have published the third of a three-part series on securing the software supply chain: ‘Securing Software Supply Chain Series - Recommended Practices Guide for Customers’.
The new guidance, along with the accompanying fact sheet, provides recommended practices for software customers to ensure the integrity and security of software during the procuring and deployment phases.
The Securing Software Supply Chain Series is an output of the Enduring Security Framework (ESF), a public-private cross-sector working group led by NSA and CISA.
CISA encourages all organizations that participate in the software supply chain to review the guidance.