Source Link On February 4, the National Institute of Standards and Technology (NIST) issued…
Category:
Application Security
-
-
Application SecuritySecurity
Alpha-Omega Project takes a human-centered approach to open-source software security
Source Link The Log4j vulnerability crisis that erupted in late-2021 heightened the security world’s…
-
Application SecuritySecurity
How chaos engineering can help DevSecOps teams find vulnerabilities
by Peter Waynerby Peter WaynerThe words “chaos” and “engineering” aren’t usually found together. After all, good engineers keep…
-
Application SecuritySecurity
Tech sector embraces public-private collaboration on open-source software security
Hoping to foster improved security of open-source software, the White House hosted a meeting…
-
Application SecuritySecurity
The CSO guide to top security conferences, 2022
by CSO staffby CSO staffThere is nothing like attending a face-to-face event for career networking and knowledge gathering,…
-
If you want to know what’s new in cybersecurity, watch what the startup vendors…
-
President Biden’s wide-ranging cybersecurity executive order issued last May directs the National Institute of…
-
Application SecuritySecurity
NIST workshop provides clues to upcoming software supply chain security guidelines
President Biden’s wide-ranging cybersecurity executive order (EO) issued in May aims to improve software…
-
Application SecuritySecurity
Software composition analysis explained, and how it identifies open-source software risks
by Ax Sharmaby Ax SharmaSoftware composition analysis definition Software composition analysis (SCA) refers to obtaining insight into what…
-
Application SecuritySecurity
4 tools to prevent leaks in public code repositories
by Daniel Brameby Daniel BrameSecrets stored in Git repositories have been a thorn in the side of developers…