View RCF  - OIRA Conclusion

202405-2501-001CF
Active 03/31/2027
HUD/HUDSEC
1670-0052 202311-1670-001
Secure Software Development Attestation Form
RCF New
 Approved without change   05/06/2024
Retrieve Notice of Action (NOA) 05/03/2024
HUD intends to use this form to obtain self-attestations from software producers that their software is developed in conformity with Government-specified minimum secure software development practices. The information in this collection will be used to assess any potential risk in the agency’s use of the software.
None
 
Laurence Chamber 202 402-6717

IC Title Status Responses Hours Dollars Document Type Form No. Form Name
Secure Software Development Attestation Form 350 848 0 Form and Instruction N/A Secure Software Sefl-Attestation Common Form

  Total Approved Previously Approved Change Due to New Statute Change Due to Agency Discretion Change Due to Adjustment in Estimate Change Due to Potential Violation of the PRA
Annual Number of Responses 350 0 0 350 0 0
Annual Time Burden (Hours) 848 0 0 848 0 0
Annual Cost Burden (Dollars) 0 0 0 0 0 0

Yes
Miscellaneous Actions
No
This information collection requires software producers (e.g., developers and manufacturers) whose software is used by the Government to attest that they followed specific elements in the National Institute of Standards and Technology (NIST) Secure Software Development Framework (SSDF) during production and development of the software. Office of Management and Budget (OMB) Memorandum M-22-18, “Enhancing the Security of the Software Supply Chain through Secure Software Development Practices,” dated September 14, 2022, requires the Cybersecurity & Infrastructure Security Agency (CISA), in consultation with OMB, to develop a secure software attestation “common form” for Paperwork Reduction Act (PRA) clearance for all Federal departments and agencies.