Jan 26 2025 19 mins 129
Dick Brooks from Business Cyber Guardian discusses the landscape of federal software security requirements, we discuss frameworks like CISA's Software Acquisition Guide, Secure Software Development Framework, and the EU's Cyber Resilience Act. These regulations impact open source projects differently from commercial vendors, Dick helps explain what that means for the vendors as well as open source developers.
The accompaning blog can be found at
https://opensourcesecurity.io/2025/01-government_security_requirements_with_dick_brooks
CISA Software Acquisition Guide
CISA SAG Reader Project
NASA SSDF collaboration
