TRENDING:

Application Security & Online Fraud , Next-Generation Technologies & Secure Development

Why Doesn't Software Get Sold With a List of Ingredients?

Allan Friedman Details the 'Software Bill of Materials' Initiative Mathew J. Schwartz (euroinfosec) • March 4, 2020    
Allan Friedman, director of cybersecurity initiatives, NTIA

Just as consumers can look at a box of Twinkies and read a list of ingredients, so too should software makers provide users with a "bill of materials" explaining their composition, says Allan Friedman, director of cybersecurity initiatives at the U.S. National Telecommunications and Information Administration.

See Also: Live Webinar | Breaking Down Security Challenges so Your Day Doesn’t Start at 3pm

In a video interview with Information Security Media Group at RSA 2020, Friedman also discusses:

Friedman is the director of cybersecurity initiatives at NTIA, which part of the U.S. Department of Commerce, where he coordinates NTIA’s multistakeholder processes, bringing together industry and the security community on issues such as vulnerability disclosure and IoT security. Previously, Friedman spent over 15 years as a noted security and technology policy expert, conducting research at Harvard’s Computer Science Department, the Brookings Institution and George Washington University’s Engineering School. In 2014, he co-authored Oxford Press’s “Cybersecurity and Cyberwar: What Everyone Needs to Know.”

Previous
Cyberattack Trends and Essential Hack-Repelling Defenses
Next
DevOps and the State of Software Security

About the Author

Mathew J. Schwartz

Mathew J. Schwartz

Executive Editor, DataBreachToday & Europe, ISMG

Schwartz is an award-winning journalist with two decades of experience in magazines, newspapers and electronic media. He has covered the information security and privacy sector throughout his career. Before joining Information Security Media Group in 2014, where he now serves as the executive editor, DataBreachToday and for European news coverage, Schwartz was the information security beat reporter for InformationWeek and a frequent contributor to DarkReading, among other publications. He lives in Scotland.



Around the Network

Securing OT and IoT Assets in an Interconnected World
Securing OT and IoT Assets in an Interconnected World
CyberArk CEO Touts New Browser That Secures Privileged Users
CyberArk CEO Touts New Browser That Secures Privileged Users
Closing Privacy 'Loopholes' in Reproductive Healthcare Data
Closing Privacy 'Loopholes' in Reproductive Healthcare Data
Checking Out Security Before Using AI Tools in Healthcare
Checking Out Security Before Using AI Tools in Healthcare
What's Inside Washington State's New My Health My Data Act
What's Inside Washington State's New My Health My Data Act
Integrating Generative AI Into the Threat Detection Process
Integrating Generative AI Into the Threat Detection Process
Top Privacy Considerations for Website Tracking Tools
Top Privacy Considerations for Website Tracking Tools
How to Simplify Data Protection within your Organization
How to Simplify Data Protection within your Organization
Are We Facing a Massive Cybersecurity Threat?
Are We Facing a Massive Cybersecurity Threat?
Why Cyber Defenders Need Partnerships, Tools and Education
Why Cyber Defenders Need Partnerships, Tools and Education

Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing inforisktoday.asia, you agree to our use of cookies.