FedScoop

DHS Releases Dictionary of Software Weaknesses

The Department of Homeland Security released a dictionary of software weaknesses and their associated mitigation practices yesterday. The guide, titled Common Weakness Enumeration version 2.0, was ...
CSOonline

NIST defines “critical software” with a broad range of security functions

The goal is to enable stronger security practices for government-purchased software mandated by President Biden's cybersecurity executive order. The EO stipulates that NIST’s definition “shall reflect ...