View RCF - OIRA Conclusion

RCF ID: 202404-1910-001CF	Previous RCF ID:
Status: Active	Expiration Date: 03/31/2027
Agency/Subagency: DOE/DOEOA	Agency Tracking No: Shannon Hughes
Host OMB Control No: 1670-0052	Host ICR Reference No: 202311-1670-001

Title: Secure Software Development Attestation Form

Type of RCF: RCF New
OIRA Conclusion Action: Approved without change	Conclusion Date: 05/28/2024
	Date Received in OIRA: 05/13/2024
Terms of Clearance:

Description of Agency Usage: DOE intends to use this form to obtain self-attestations from software producers that their software is developed in conformity with Government-specified minimum secure software development practices.

Authorizing Statute(s): None

Annual Cost to Federal Government:
Agency Contact: Yohanna Freeman 301 903-1151 yohanna.freeman@hq.doe.gov

Common Form Information Collections (IC) in this RCF:

IC Title	Status	Responses	Hours	Dollars	Document Type	Form No.	Form Name
Secure Software Development Attestation Form		6,000	14,539	0	Form and Instruction	N/A	Secure Software Sefl-Attestation Common Form

RCF Summary of Burden:

	Total Approved	Change Due to Agency Discretion
Annual Number of Responses	6,000	6,000
Annual Time Burden (Hours)	14,539	14,539
Annual Cost Burden (Dollars)	0	0

Burden increases because of Program Change due to Agency Discretion: Yes

Burden Increase Due to: Changing Regulations

Burden decreases because of Program Change due to Agency Discretion: No

Burden Reduction Due to:

Short Statement: DOE is requesting use of the common form to comply with OMB M-22-18 Enhancing the Security of the Software Supply Chain through Secure Software Development Practices, and OMB M-23-16, Update to Memorandum.