Technology CISA is pressuring technology vendors to provide secure software...

CISA is pressuring technology vendors to provide secure software ‘out of the box’


- Advertisment -

Join top executives in San Francisco on July 11-12 to hear how leaders are integrating and optimizing AI investments for success. Learn more

Today, the Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigation, the National Security Agency (NSA) and cybersecurity authorities in Australia, Canada, the United Kingdom, Germany, the Netherlands and New Zealand have released new ones accompaniment urging software manufacturers to take the necessary steps to ship products that are designed to be secure “out of the box”.

The guidance, a report titled “Shifting the Balance of Cybersecurity Risk: Principles and Approaches for Security-by-Design and -Default,” aims to “encourage every technology manufacturer to build its products so that customers don’t have to constantly perform monitoring, routine updates and damage mitigation on their systems.”

>>Don’t miss our latest special issue: Data centers in 2023: doing more with less.<

It also outlines steps organizations can take to implement secure-by-design and secure-by-default approaches, which are critical to minimizing vulnerabilities and bugs before they are released to market, so that software remains resistant to abuse by threat actors.

“Building security into the design process is not only good practice, it is also very effective in reducing software errors before they reach the consumer. The challenge, however, is for organizations to adopt these practices without impacting the business, as this process takes time and requires resources that can impact the bottom line,” said Ray Kelly, fellow at Synopsys Software Integrity Group.

The report comes less than a year after the EU Cyber ​​Resilience Actwhich aimed to codify a cybersecurity framework for hardware and software manufacturers to improve the security of products during the design and development phase.

Both the Cyber ​​Resilience Act and the new guidelines from CISA emphasize that there is an industry-wide shift from placing the security burden on end-user organizations and customers to making software vendors more transparent and responsible for the level of bugs and vulnerabilities in released products.

VentureBeat’s mission is to become a digital city plaza where tech decision makers can learn about transformative business technology and execute transactions. Discover our Briefings.

Shreya Christina
Shreya has been with for 3 years, writing copy for client websites, blog posts, EDMs and other mediums to engage readers and encourage action. By collaborating with clients, our SEO manager and the wider team, Shreya seeks to understand an audience before creating memorable, persuasive copy.

Latest news

SQL Server Change Data Capture (CDC): Revolutionizing Data Tracking and Analysis

In today's data-centric world, the ability to efficiently and accurately track changes in databases is crucial for organizations of...

App vasitesile inanılmaz Pin-Up poker oyunu

ContentAzərbaycanda mövcud olan Depozit və Çıxarma MetodlarıPin Up Casino Oyunçuları üçün bonuslarİlk depozit bonusunu necə əldə etmək olarSlot maşınlarının...

Pin up indir android ⭐️ Pinup indir mobil cazino uygulamasıdır

ContentPin Up-ı iOS-lara nece yükləyib quraşdırmaq olar?Pin Up Casino Azerbaycan YuklePin Up indir android mobil Apk uygulamasıPınup İlk Üyelik...

Pin-up kazino bonusları ᐉ İlk depozit üçün promo kodu PINUPBEST

ContentRəsmi sayt Pin UpAviator Pin UP oynaya biləcəyiniz yerlər - vebsayt və proqramPin Up kazinosunda oyun kateqoriyalarıDepozit mükafatları yoxdurAndroid...
- Advertisement -

Immediate Edge Review 2022 Warning Scam or Legit Read Before Trading

Finally, we are at the conclusion that investors should give Immediate Edge a try for cryptocurrency trading. We are...

Immediate Edge Review 2023: Is It a Scam or Legit? Find Now!

Hacked trading accounts have been reported, with users losing their funds. Immediate Edge puts a high level of protection...

Must read

- Advertisement -

You might also likeRELATED
Recommended to you