fsebugoutzone.org:9999

       Post B2o7gr2MHsBxtzlXyy by adulau@infosec.exchange
 (DIR) More posts by adulau@infosec.exchange
 (DIR) Post #B2o7gr2MHsBxtzlXyy by adulau@infosec.exchange
       2026-01-29T16:45:09Z
       
       0 likes, 1 repeats
       
       So the original #SBOM requirement for federal agencies in US was just removed.&quot;OMB Memorandum M-22-18, Enhancing the Security of the Software Supply Chainthrough Secure Software Development Practices (M-22-18), imposed unproven and burdensome software accounting processes that prioritized compliance over genuine security investments.This policy diverted agencies from developing tailored assurance requirements for software andneglected to account for threats posed by insecure hardware. Accordingly, 0MB Memoranda M-22-18 and M-23-16, a companion policy, are hereby rescinded.&quot;#sbom #cybersecurity🔗 https://www.whitehouse.gov/wp-content/uploads/2026/01/M-26-05-Adopting-a-Risk-based-Approach-to-Software-and-Hardware-Security.pdf