When Everyone Can Code: How AI Breaks Traditional Software Security

Not only are we less clear about who is developing software, but we are also less confident about our total inventory of ...
SDxCentral

OpenSSF details top 10 secure software development principles

What does it take to make secure software? The Open Source Security Foundation (OpenSSF) has a few ideas (10 of them, in fact). This week at the OpenSSF Day Japan event in Tokyo, the nonprofit group ...
SD Times

Biden-Harris Administration to require secure software development attestation form for government software

Value stream management involves people in the organization to examine workflows and other processes to ensure they are deriving the maximum value from their efforts while eliminating waste — of ...
Bleeping Computer

Why a secure software development life cycle is critical for manufacturers

For all the scary talk about cyberattacks from vendors and industry experts, relatively few attacks are actually devastating. But the Jaguar Land Rover (JLR) attack was. The JLR breach wasn’t some ...
Government Executive

Speeding Secure Software Development and Attaining ATO

This whitepaper covers how to expedite authority to operate and secure development at scale in the U.S. Government by connecting secure software development and ATO. U.S. government agencies are ...
SiliconANGLE

Apiiro introduces Guardian Agent to secure AI-driven software development

Application security posture management company Apiiro Ltd. today announced the launch of Guardian Agent, a new artificial intelligence application security agent that guards AI models and prevents ...
FedScoop

CISA, OMB release secure software development attestation form

Makers of software used by the federal government will now be required to affirm that their products are manufactured with secure development practices in mind, filling out a form released Monday by ...
Security

The Linux Foundation and OpenSSF release report on the state of education in secure software development

Linux Foundation Research and the Open Source Security Foundation (OpenSSF) are pleased to release a new report titled “Secure Software Development Education 2024 Survey: Understanding Current Needs.” ...
Nasdaq

GitLab Announces Secure AI-driven Capabilities to Streamline Software Development

GitLab Duo Enterprise, a new end-to-end AI add-on, combines the developer-focused AI capabilities of GitLab Duo Pro—organizational privacy controls, code suggestions, and chat—with enterprise-focused ...
GovCon Wire

CISA, International Partners Update Secure-by-Design Software Development Guidance; Jen Easterly Quoted

Seventeen cybersecurity and defense agencies from different countries joined the U.S. Cybersecurity and Infrastructure Security Agency in updating a guidance on the implementation of secure-by-design ...
CRN

Docker’s Open-Source Images Accelerate Secure AI Development: Anaconda CEO

Last week’s Docker announcement that it would make more than 1,000 of its Docker Hardened Images free and open-source software, combined with Anaconda’s AI Catalyst and other development technologies, ...