{"id":629591,"date":"2023-04-15T09:49:31","date_gmt":"2023-04-15T14:49:31","guid":{"rendered":"https:\/\/news.sellorbuyhomefast.com\/index.php\/2023\/04\/15\/cisa-pressures-tech-vendors-to-ship-secure-software-out-of-the-box\/"},"modified":"2023-04-15T09:49:31","modified_gmt":"2023-04-15T14:49:31","slug":"cisa-pressures-tech-vendors-to-ship-secure-software-out-of-the-box","status":"publish","type":"post","link":"https:\/\/newsycanuse.com\/index.php\/2023\/04\/15\/cisa-pressures-tech-vendors-to-ship-secure-software-out-of-the-box\/","title":{"rendered":"CISA pressures tech vendors to ship secure software \u2018out of the box\u2019"},"content":{"rendered":"
\n
\n

\n

\"Programmer<\/p>\n

\n

Programmer looking at code on a screen<\/span><\/p>\n

Image Credit: Przemyslaw Klos \/ EyeEm via Getty<\/em><\/p>\n<\/div><\/div>\n<\/p><\/div>\n

\n
\n
\n
\n

Join top executives in San Francisco on July 11-12, to hear how leaders are integrating and optimizing AI investments for success<\/em>. Learn More<\/a><\/em><\/p>\n

\n<\/div>\n

Today, the Cybersecurity and Infrastructure Security Agency (CISA<\/a>), the Federal Bureau of Investigation, the National Security Agency (NSA<\/a>) and cybersecurity authorities across Australia, Canada, United Kingdom, Germany, Netherlands and New Zealand released new guidance<\/a> urging software manufacturers to take the steps necessary to ship products that are secure-by-design, \u201cout of the box.\u201d\u00a0<\/p>\n

The guidance, a report named \u201cShifting the Balance of Cybersecurity Risk: Principles and Approaches for Security-by-Design and -Default,\u201d aims to \u201cencourage every technology manufacturer to build their products in a way that prevents customers from having to constantly perform monitoring, routine updates, and damage control on their systems.\u201d\u00a0<\/p>\n

>>Don\u2019t miss our newest special issue: <\/a>Data centers in 2023: How to do more with less<\/a>.<<<\/strong><\/p>\n

It also outlines the steps organizations can take to implement secure-by-design and secure-by-default approaches, which are essential for minimizing vulnerabilities and bugs before their release to the market, ensuring software remains resilient to exploitation from threat actors.\u00a0\u00a0<\/p>\n

<\/p>\n

\n

Event<\/h3>\n
\n

Transform 2023<\/span><\/p>\n

\n

Join us in San Francisco on July 11-12, where top executives will share how they have integrated and optimized AI investments for success and avoided common pitfalls.<\/p>\n<\/div>\n<\/div>\n


\n Register Now <\/a>\n <\/p>\n<\/div>\n

<\/body><\/p>\n

\u201cBuilding security into the design process is not only good practice, it\u2019s also very effective in mitigating flaws in software before they reach the consumer. The challenge, however, is for organizations to adopt these practices without affecting the business, as this process takes time and requires resources that can impact the bottom line,\u201d said Ray Kelly, fellow at Synopsys Software Integrity Group<\/a>.<\/p>\n

The report comes less than a year after the EU introduced the Cyber Resilience Act<\/a>, which set out to codify a cybersecurity framework for hardware and software producers to improve the security of products during the design and development phase.\u00a0<\/p>\n

Both the Cyber Resilience Act and CISA\u2019s new guidance highlights there is an industry-wide shift away from placing the burden of security on end-user organizations and customers toward making software vendors more transparent and accountable for the level of bugs and vulnerabilities present in released products.\u00a0<\/p>\n

VentureBeat’s mission<\/strong> is to be a digital town square for technical decision-makers to gain knowledge about transformative enterprise technology and transact. Discover our Briefings.<\/a><\/p>\n

\t\t\t\t<\/html><\/div>\n<\/p><\/div>\n

Read More<\/a>
\n Tim Keary<\/p>\n","protected":false},"excerpt":{"rendered":"

April 13, 2023 1:22 PM Programmer looking at code on a screenImage Credit: Przemyslaw Klos \/ EyeEm via Getty Join top executives in San Francisco on July 11-12, to hear how leaders are integrating and optimizing AI investments for success. Learn More Today, the Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigation<\/p>\n","protected":false},"author":1,"featured_media":629592,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[23654,46,44880],"tags":[],"class_list":{"0":"post-629591","1":"post","2":"type-post","3":"status-publish","4":"format-standard","5":"has-post-thumbnail","7":"category-pressures","8":"category-technology","9":"category-vendors"},"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/newsycanuse.com\/index.php\/wp-json\/wp\/v2\/posts\/629591","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/newsycanuse.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/newsycanuse.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/newsycanuse.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/newsycanuse.com\/index.php\/wp-json\/wp\/v2\/comments?post=629591"}],"version-history":[{"count":0,"href":"https:\/\/newsycanuse.com\/index.php\/wp-json\/wp\/v2\/posts\/629591\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/newsycanuse.com\/index.php\/wp-json\/wp\/v2\/media\/629592"}],"wp:attachment":[{"href":"https:\/\/newsycanuse.com\/index.php\/wp-json\/wp\/v2\/media?parent=629591"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/newsycanuse.com\/index.php\/wp-json\/wp\/v2\/categories?post=629591"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/newsycanuse.com\/index.php\/wp-json\/wp\/v2\/tags?post=629591"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}